Skip to Main Content

Ben Mauch

Director of Product Operations

Ben has been working in technology and development for over 20 years. He spent 13 years doing defense in the medical industry before moving over to offense. He uses his knowledge of defense to refine his offensive skills and then uses this knowledge to equip customers with a better understanding of defensive methodologies. Ben has dedicated himself to the security industry for the past 15 years. He speaks at several conferences each year across the US, and he has presented in Oslo, Norway. Ben is active in the security community by offering talks, training, and encouraging new people to get involved.

GIAC Certified Penetration Tester


  • Released several open-source tools, including The PoshSec Framework, HoneyCreds, Not PowerShell (nps), and Orpheus
  • Chief architect and developer on Impede Detection Platform
  • Featured in the book Tribe of Hackers as one of 100 people who are making an impact in Information Securitys
  • Primary Instructor for TrustedSec’s BlackHat USA Training Class, InfoSec World USA’s Training Class, and TrustedSec’s online training for Purple Teams and PowerShell for Offense and Defense
  • Presenter at several industry events and conventions such as DerbyCon, THOTCON, BSides Chicago, BSides DFW, Texas Cyber Summit, GrrCON, BSides Detroit, Ohio Chapter of the ISSA, CactusCon, ShowMeCon, and more.
  • Guest appearance on KMOV St. Louis

Featured Blogs And Resources

Discover the blogs, analysis, webinars, and podcasts by this team member.

Webinars November 29 2023

Transformative Detection Engineering with Impede

Join the excitement as Ben Mauch, Managing Director of Tactical Awareness and Countermeasures (TAC), leads the way in celebrating launch of Impede with a live…

Read about this article
News August 09 2023

TrustedSec Announces New Impede Detection Platform

The TrustedSec Impede Detection Platform will revolutionize the way businesses handle detection engineering.

Read about this article
Podcasts December 08 2023

Security Noise - Episode 6.12

Yule Time Tool Time

Read about this article
Blog November 17 2022

The Art of Bypassing Kerberoast Detections with Orpheus

Back in May of 2018, I wrote a blog post detailing the steps I took to detect Kerberoast (T1558.003) attacks. This research allowed us to help organizations…

Read about this article
Webinars April 12 2023

Training Preview: Actionable Purple Teaming at Black Hat USA 2023

Get an exclusive sneak peek into TrustedSec’s upcoming training program at Black Hat USA 2023.

Read about this article
Blog May 10 2018

The Art of Detecting Kerberoast Attacks

As a former defender, there is a sense of “happiness” when I can put defenses in place that allow you to detect attacks and potential indicators of compromise…

Read about this article
Blog July 23 2017

New Tool Release: NPS_Payload

Over the past year, we have seen a lot of research come out which highlights several of Microsoft’s native binaries which can be leveraged by an attacker to…

Read about this article
Training Resources November 07 2024

Actionable Purple Team Simulation Online Training (November 7-8)

Learn how to create specific detections to identify early Indicators of Compromise (IOCs) in our online course. Designed for those looking to improve their…

Read about this article
Training Resources August 03 2024

Black Hat USA Training - Applied Threat Hunting and Detection Engineering

Registration is now open for our Black Hat training on August 3-6, 2024

Read about this article
Training Resources March 23 2024

DakotaCon 11 - Threat Hunting Workshop

TrustedSec’s Threat Hunting Workshop combines proprietary methods with traditional incident response investigative techniques for discovering compromises…

Read about this article

Empower your business through better security design.

Talk directly with our experienced advisory consultants to learn how we can help.