Professionally Evil Insights

Welcome to the Professionally Evil Insights blog by Secure Ideas! In this digital playground, we unravel the complex world of information security with a touch of fun. Our expert-led content ranges from deep-dives into penetration testing to explorations of hardware hacking. Whether you're curious about Secure Ideas or passionate about cybersecurity, this blog is your quick, enlightening, and entertaining guide into the captivating world of information security.

Welcome aboard!

    Featured Image
    Application security penetration tests once were a novelty, a luxury that only organizations with security budget to burn would indulge in. But as more and more resources have moved to the web, including mission-critical enterprise applications, these exercises have become a vital part of most ...
    Continue Reading

    Never miss a Professionally Evil update!

    Sign Up For Our Newsletter
    Stay safe from cybercrime with these five tips
    Stay safe from cybercrime with these five tips
    cybersecurity  |  MFA
    Cybercriminals will use every tactic in the book to steal data, drain bank accounts, and extort ...
    Continue Reading
    The Fellowship of the Phish: PayPal's Perilous Request Feature
    The Fellowship of the Phish: PayPal's Perilous Request Feature
    In cybersecurity, we often find ourselves fixated on the latest sophisticated malware or zero-day ...
    Continue Reading
    Secure Ideas is CREST-Certified. Here’s Why That Matters
    Secure Ideas is CREST-Certified. Here’s Why That Matters
    Cybersecurity is no longer a monolithic topic – if it ever was. Specialization matters. ...
    Continue Reading
    Step Into the Shadows: The Haunting of the Dark Web
    Step Into the Shadows: The Haunting of the Dark Web
    Halloween  |  DarkWeb
    Ready to venture into the unseen corners of the internet? Join us for a Halloween webcast, "The ...
    Continue Reading
    Automating UART Command Injection with the Flipper Zero and JavaScript
    Automating UART Command Injection with the Flipper Zero and JavaScript
    UART  |  flipper zero
    Overview The Flipper Zero recently came out with a JavaScript system built off of MJS that exposes ...
    Continue Reading
    What’s new in the OWASP Proactive Controls for 2024
    What’s new in the OWASP Proactive Controls for 2024
    I have taught a number of application security classes to developers. When it comes to ...
    Continue Reading
    Many Hands Approach To AppSec
    Many Hands Approach To AppSec
    "If you want to frustrate a good developer, interfere with their ability to complete work." - ...
    Continue Reading
    The CISO's Myopia
    The CISO's Myopia
    Fifteen years ago, I wrote an article entitled "The CSO’s Myopia." At the time, I aimed to ...
    Continue Reading
    Kubernetes Pentesting: The Hacker’s Harvest
    Kubernetes Pentesting: The Hacker’s Harvest
    Are you ready to dive into the world of Kubernetes pentesting? Join us for our upcoming webcast, ...
    Continue Reading
    From Code to Cloud: Strengthening IaC Security with SAST
    From Code to Cloud: Strengthening IaC Security with SAST
    IaC  |  SAST
    Infrastructure as Code (IaC) is a cornerstone in modern DevOps and DevSecOps practices, but how do ...
    Continue Reading
    NMAP in Action: API's
    NMAP in Action: API's
    In a recent blog post, my coworker Josh introduced the fundamentals of NMAP and highlighted its ...
    Continue Reading
    Has contents: true Total pages: 38 Current page: 1
    1 2 3 4 5