I tried harder: My OSCP review and advice

A couple weeks ago, I received official word from Offensive Security that I obtained my OSCP -- Offensive Security Certified Professional. Needless to say, I'm thrilled with this outcome as I've been working hard to achieve this. And if you're reading this blog post, you're likely doing the same. During…

Read this article

DNS Egress

Well here's a handy trick. We often find in post-exploitation that it can be difficult to egress data. This is especially true in environments where egress filtering is enabled and a host only allows connections over basic ports like 53/DNS. I came across this trick the other day which…

Read this article

This Should be Fun

So, I've started and stopped blogs many times. But this time is for real. Look for me to post useful anecdotes about my foray into the world of pen testing, security and malware analysis. I'm relatively new in the space, so I'm guessing this blog will be for others who…

Read this article

Git Tip #1: Removing a Directory

I work with git fairly regularly for my day job. I was in need of removing a directory that the CMS uses for caching objects for which there was no need to version control. I discovered that the best way to accomplish the task is the following command: git rm…

Read this article

Passed the CEH Yesterday

Yesterday, I passed the CEH certification exam. Big woop, right? Well, it was for me. Mainly because I'm not a sysadmin. Nor am I an IT guy. My college degree was in journalism (public relations, actually) and for my day job I'm a web designer, developer and marketer (if that's…

Read this article