So here at Secure Ideas we have decided to do a small series of posts. The purpose of these posts is to provide a quick introduction to each of the consultants on staff. Its kind of a fun and quick post.
Please feel free to reach out to each of us with any comments or questions you may have!
Who am I:
Kevin Johnson, CEO and founder of Secure Ideas.
What do I do at Secure Ideas:
Some people would say not much! 😉 Basically I am one of the consultants as well as the guy who deals with the technical running of the company. I work with our clients and to ensure that we are doing what they need us to do and with our staff to make sure we keep up and build to the next thing!
What is my security background in a nutshell:
Interesting question. (That I will be digging deeper in in a post coming soon!) I have been a nerd for a VERY long time. As a person that did both administration and development over the years, security was something I learned I needed to deal with quite quickly. Of course originally it was something I had to get around or put up with! 😉 As time went on, I started to be more and more involved, doing things like building incident response teams and testing the security of our systems. This led to becoming a consultant. 🙂 I have since written three different classes for SANS, worked on a number of open source projects and performed penetration tests and social network assessments for tons of clients.
What is my favorite attack:
While there have been tons of attacks I like to pull off during a penetration test, lately I have been having a lot of fun attacking mobile applications and their supporting back-end applications. I find that in many of the cases we have tested, the application developer has assumed that all of the input will be safe because they wrote the front-end mobile application. Of course this is a huge mistake and as an attacker I can do lots of fun things with this assumption. I have been able to access other people’s accounts, transfer money into my account and do lots of other attacks because of it.
What am I learning about now:
So in a completely odd direction, I just started working on learning to read and write Mandarin.
There are a ton of ways to reach me directly: