EXPERIENCE
Brandon began work as a Security Consultant after graduation. From there, he began contributing to the open-source community and research as a whole.
EDUCATION & CERTIFICATIONS
- BS – Computer Networks and Security – Birmingham City University
- Certified Red Team Operator (CRTO)
- Offensive Security Certified Professional (OSCP)
- Certified Red Team Professional (CRTP)
- eLearnSecurity Penetration Testing eXtreme (PTX)
PROFESSIONAL AFFILIATIONS
Research and work can be found at:
PASSION FOR SECURITY
Brandon has a passion for pulling apart Windows and AV products alike, which tends to manifest in many Visual Studio project files.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Windows Processes, Nefarious Anomalies, and You: Threads
In part 1 of this blog mini-series, we looked at memory regions and analyzed them to find some potential malicious behavior. In part 2, we will do the same…
Windows Processes, Nefarious Anomalies, and You: Memory Regions
While operating on a red team, the likelihood of an Endpoint Detection and Response (EDR) being present on a host is becoming increasingly higher than it was a…
BEC Basics: Your First Step to Thwarting Email Scams
Attackers never stop evolving their business email compromise (BEC) tactics, leveraging phishing, credential harvesting, and email spoofing to infiltrate…
Actionable Purple Team Simulation Online Training (November 7-8)
Learn how to create specific detections to identify early Indicators of Compromise (IOCs) in our online course. Designed for those looking to improve their…
Ask Me Anything: Advanced Cloud Pen Testing Scenarios
Cloud Penetration Tests are a critical component of cloud security, but integrating other testing methods can take the assessment to the next level. Adding…
Offensively Groovy
On a recent red team engagement, I was able to compromise the Jenkins admin user via retrieving the necessary components and decrypting credentials.xml. From…
Security Noise - Episode 7.4
Who's On My Network?
Spec-tac-ula Deserialization: Deploying Specula with .NET
Earlier this year, I gave a talk at Steelcon on .NET deserialization and how it can be used for Red Team ops. That talk focused on the theory of .NET…
Calculating Business Impact
In today’s digital landscape, gaining a deep understanding of how cybersecurity threats can affect business-critical systems is crucial for maintaining…
Let’s Clone a Cloner - Part 2: You Have No Power Here
Previously on Let's Clone a Cloner, I needed a long-range RFID badge cloner. There are many walkthroughs out there on how to build a cloner that are fantastic,…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
