Professionally Evil Insights

Welcome to the Professionally Evil Insights blog by Secure Ideas! In this digital playground, we unravel the complex world of information security with a touch of fun. Our expert-led content ranges from deep-dives into penetration testing to explorations of hardware hacking. Whether you're curious about Secure Ideas or passionate about cybersecurity, this blog is your quick, enlightening, and entertaining guide into the captivating world of information security.

Welcome aboard!

    Being Safe and Secure with Cross-Origin Messaging
    Complex web and mobile apps often depend on cross-domain interactions between different online services, but the web browser’s security model restricts them by default via the Same-Origin Policy. A variety of approaches have been used to address this need. JSONP solved this by using script tags to ...
    Continue Reading

    Never miss a Professionally Evil update!

    Steam Deck Privacy and Security
    security  |  Gaming  |  Privacy
    Like any portable computing device, there are going to be questions about privacy and security. The ...
    Continue Reading
    Quick Bites Episode 2 - HTTP Security Headers and Why You NEED Them
    Hi everybody! So, after some feedback about the last “quick” Quick Bites (thanks Josh!), I’ve ...
    Continue Reading
    PowerShell Tips: How do I Mount a VHD or Lock a BitLocker Drive?
    encryption  |  security  |  professionally evil  |  Secure Ideas  |  getting started  |  BitLocker  |  VHD  |  rtfm  |  manage-bde  |  mount-vhd  |  manage bitlocker  |  technology  |  technology tips and tricks  |  Windows 10  |  VHDX  |  encrypted drive  |  technology tips  |  how-to  |  btfm  |  Windows 11
    PowerShell Tips How do I Mount a VHD or Lock a BitLocker Encrypted Drive?
    Continue Reading
    Wild West Hackin Fest 2022: The Return
    Man, San Diego is beautiful. I don't know exactly why John Strand and Black Hills Information ...
    Continue Reading
    Digging Between the Couch Cushions - CouchDB CVE-2021-38295 Breakdown
    Introduction In this blog post we’re going to take a look at the recent CouchDB vulnerability, ...
    Continue Reading
    ViewState XSS: What's the Deal?
    Testing  |  developers  |  QA  |  security  |  testers  |  web penetration testing
    As penetration testers, there are many different technologies that we have to be familiar with. The ...
    Continue Reading
    Testing ASP.Net WebForms: Request Method Validation
    As a professional penetration tester, there are many features of an application that are similar ...
    Continue Reading
    SamuraiWTF 2.0? What happened to 1.0?
    security  |  2.0  |  open source  |  testers  |  releases  |  web penetration testing
    So the SamuraiWTF project have released the first few release candidates for the formal 2.0 ...
    Continue Reading
    How to Setup RatProxy on Windows
    developers  |  QA  |  security  |  testers
    In an effort to help developers and other windows users get started adding security testing into ...
    Continue Reading