I recently had some one come to me and ask for advice on how to get into the cyber security field, specifically web application security.  I recommended a couple good books and certifications to look at, as well as some good resources for video training materials, but I only recommended learning one tool – Burp Suite. […]

Look AppSec people, I know you just love dealing with development teams.  I know the best part of my day is logging into my computer to be greeted by 3 “we don’t think this vulnerability is an issue” emails. Believe me, I’m sure they share the same warm, fuzzy feelings about us as well. But […]

At this point, I’m sure you’ve all heard about Apple’s on-going fight with the FBI over allowing backdoors into iPhones.  In the world of cyber security, encryption, and privacy, this is the battle that will set the tone for the impending war.  I have an enormous amount of respect for Apple’s CEO, Tim Cook.  In an […]

Who ever said “work smarter, not harder” obviously had a Shodan account.  This is a little story of how I managed to run a relatively simple audit against the company I work for in under 15 minutes.  Again, if you haven’t read my blog post on the basics of Shodan, I would highly recommend giving […]

Considering the massive response I got from the last post about Shodan, I figured I should do a follow up.  Thank you to all who re-tweeted the link, and a big shout out to John Matherly, founder of Shodan, for the publicity.  Bro of the year.  If you haven’t read through my last post, I […]

So let me tell you about a little thing called Shodan.  To put it simply, this terrifyingly beautiful website is a search engine for the Internet of Things.  It’s powerful, thorough, and just downright fun to play with.  Shodan will take your search and discover all devices connected to the internet related to the query. […]

I know how hard it is for recent college graduates to snag that first big interview, so a big congratulations to you. That’s the first step to entering the cyber security profession.  I also know how intimidating it can be trying to prepare for it.  I figured I’d share some of the experiences I’ve had […]