During our penetration tests we often get asked about the amount of information that is leaking out via social networks, web pages and the like. In fact the first step in our methodology is Recon where we search the Internet and social networks for information about the company we are targeting. It is sometimes surprising what we find when …
Professionally Evil: Your Stealth Startup is ShowingRead More »
As a penetration tester, brute force attacks are something I test for on every application. Obviously, I test the login forms for this type of security flaw. There are also other areas of an application that brute force attacks can be effective. The one I want to discuss in this post is related to functionality …
So we are at it again! James Jardine, Jason Wood and I were at BSides Orlando this weekend and decided to take the opportunity to record the latest episode of the Professionally Evil Perspective (even if Jason doesn’t necessarily remember the title of the podcast completely!). As with the previous ones, we try to dig …
Professionally Evil Perspective Podcast:Misconfigurations and Default CredentialsRead More »
In this series of posts we’re introducing staff members at Secure Ideas to give you a quick glimpse into our lives. The goal of these posts is for you to learn more about us. So reach out to us via email or twitter. We’d love to get to know you. Who am I: Jason Wood, …
In this series of posts we’re introducing staff members at Secure Ideas to give you a quick glimpse into our lives. In the third post of this small series, we look at a recent addition to the consultant team. The goal of these posts is for you to learn more about us. So reach out …