conferences

Professionally Evil Training Event: Multiple classes being offered in Orlando FL April 6-9 2015

Secure Ideas is very excited to announce their training event for April.  We have worked with the Core Group and TrustedSec to create an event that covers a wide variety of training needs. The event is April 6-9th 2015 and will be held at the Palms International Resort. We are in the process of getting …

Professionally Evil Training Event: Multiple classes being offered in Orlando FL April 6-9 2015Read More »

Carolina Spring Security Events

It seems that Spring is “prime time” for security professionals in the Carolinas, and Charlotte seems to be at the center of it at least geographically if not organizationally.  This year started with the 10th Annual InfoSec Summit organized by ISSA Charlotte.  This was a successful year for the summit, bringing together more security professionals …

Carolina Spring Security EventsRead More »

Professionally Evil Speaking: Addressing the Real Issues Around Compliance in the Cloud Panel

Secure Ideas is excited to announce that I will be speaking as part of a panel later this month.  On January 30th in Denver, Colorado, the Addressing the Real Issues Around Compliance in the Cloud panel will be held at Mile High Station.  This panel will run from 4pm to 6pm. Faced with HIPAA, PCI, FISMA …

Professionally Evil Speaking: Addressing the Real Issues Around Compliance in the Cloud PanelRead More »

TMI: Assessing and Exploiting SharePoint at DerbyCon 3.0

James and I presented at DerbyCon last week.  We talked about some of the weaknesses found in SharePoint deploys and ways to test them.  We also walked through a couple of tools we are releasing that people can use to test and exploit SharePoint. Here is the video from that presentation. Kevin Johnson is the …

TMI: Assessing and Exploiting SharePoint at DerbyCon 3.0Read More »

DerbyCon 2013 Wrap Up

Another year and another awesome conference put on by Dave Kennedy and his team.  DerbyCon never lets down and is getting better every year.   This year also brought in training classes before the conference that were an excellent addition.  Kevin and James taught the Assessing and Exploiting Mobile Applications with OWASP MobiSec and the …

DerbyCon 2013 Wrap UpRead More »

Analyzing Web App Attacks Using ModSecurity at MIRcon 2013

I’m extremely excited to announce that I will be speaking at MIRcon2013 on ModSecurity!  The presentation’s goal is to help systems administrators, incident responders, and security analysts better manage and run an installation of ModSecurity.  Here is the synopsis from the presentation. Any publicly available web server and site is under attack on a regular …

Analyzing Web App Attacks Using ModSecurity at MIRcon 2013Read More »

Scroll to Top