Professionally Evil Insights
Welcome to the Professionally Evil Insights blog by Secure Ideas! In this digital playground, we unravel the complex world of information security with a touch of fun. Our expert-led content ranges from deep-dives into penetration testing to explorations of hardware hacking. Whether you're curious about Secure Ideas or passionate about cybersecurity, this blog is your quick, enlightening, and entertaining guide into the captivating world of information security.
Welcome aboard!
2016 is shaping up to be an interesting and exciting time at Secure Ideas. We have always done training in one form or another. Many of you may have first heard of Secure Ideas through the training that we have done for organizations such as SANS, DerbyCon, Blackhat, OWASP, MISTI, Princeton ...
Continue Reading
Never miss a Professionally Evil update!
Red Teaming - Not What You May Have Thought
Lately, I’ve been doing a lot of reading on some less technical topics and I ran across “Red Team: ...
Continue Reading
Reading (Slogging) Through the 2015 Verizon DBIR
When the first data breach investigations report was released by Verizon in 2008, I remember ...
Continue Reading
All Your Base Are Belong to #HeartBleed - OpenSSL Heartbeat Overflow
What You Need to Know and Do About It Unless you’ve been hiding under a rock, I’m sure you have ...
Continue Reading
Professionally Evil Speaking: Two Free Events in Salt Lake City, UT and Ogden, UT
These are a couple of local events for all you folks in the Salt Lake City, Ogden and Provo areas. ...
Continue Reading
Xbox One - Network Scans and Traffic Analysis
This week we are returning back to our analysis of the Xbox One and checking out some of the data ...
Continue Reading
Webcast: Defending Against Web App Attacks Using ModSecurity
Later this month I will be presenting a free webcast on ModSecurity and how we can make better use ...
Continue Reading
Xbox One - Capturing the Configuration Traffic
One of the fun things about working at Secure Ideas are the conversations that we have about ...
Continue Reading
MIRcon 2013 - Analyzing Web Attacks with ModSecurity
Last week I was able speak at MIRcon 2013 about how to use ModSecurity to discover attack activity ...
Continue Reading
Analyzing Web App Attacks Using ModSecurity at MIRcon 2013
I’m extremely excited to announce that I will be speaking at MIRcon2013 on ModSecurity! The ...
Continue Reading
Professionally Evil Toolkit - BozoCrack
This week I’ve been teaching a class on web app security for developers and I remembered a fun ...
Continue Reading
Why Do Phishing As Part of Security Testing
I was recently watching a web cast on incident response and found myself thinking about the cause ...
Continue Reading