Archive for March 28, 2013


Who are We: James Jardine

March 28, 2013

To continue on with the series of “who we are” here at secure ideas, here is the second profile post. Please feel free to reach out to each of us […]


GSA Database May Have Leaked Information: Kevin Johnson was Interviewed

March 26, 2013

Recently it was announced that there was a security flaw found in one of the GSA systems that could have allowed for vendors to see other vendor information.  The original […]


Mobile Security: Upcoming Events

March 26, 2013

Mobile security is a very hot topic and there are some pretty cool events just around the corner.  If you are looking for great information, check these events out. No, […]


Hiring Philosophy and How to Get Into InfoSec

March 20, 2013

As one of the founders of Secure Ideas, I am often asked how someone gets into InfoSec and/or how do they get hired at Secure Ideas.  So I thought it […]


Tactical Security Ops at Black Hat 2013

March 19, 2013

Kevin Johnson and John Strand recently gave a presentation at RSA 2013 titled “Tactical Sec Ops: A Guide to Precision Security Operations.”  Not surprisingly, this has been something that we’ve […]


Who are We: Kevin Johnson

March 18, 2013

So here at Secure Ideas we have decided to do a small series of posts.  The purpose of these posts is to provide a quick introduction to each of the […]


Looking for Malicious PHP Files

March 13, 2013

A while back I had to deal with a compromised web server for some folks.  They had some WordPress sites with a vulnerable plugin and found that attackers were putting […]


Admin Consoles, Default Creds, and Sweet Pwnage

March 7, 2013

When performing internal network penetration tests, one thing that really gets us excited is finding administrative consoles.  Tomcat and PHPMyAdmin are two of the most common that I’ve found from […]


Podcast Show Notes: Why are Passwords so Difficult

March 7, 2013

Kevin and James just finished up recording episode 2 of the Professionally Evil Perspective podcast.   In this episode there is a brief discussion from Kevin on his experience at RSA […]


Ninja Developers Webcast Trilogy Overview

March 5, 2013

Over the past three months, James Jardine and Kevin Johnson were featured in a webcast trilogy titled “Ninja Developers.”  The series was presented through the SANS Institute and an archive […]