EXPERIENCE
Christopher Paschen has worked in Information Security in both the private and public sectors for more than 10 years. He has experience managing Active Directory and network services for a small team and has developed products that are used across organizational boundaries to accomplish a variety of red team tasks. Currently, he manages research direction and contributes to our internal implant and payload generation systems.
EDUCATION & CERTIFICATIONS
- Master of Science, Applied Computer Science, Dakota State University
- Bachelor of Arts, Computer and Network Security, Dakota State University
- Microsoft Certified: Azure Security Engineer Associate
PASSION FOR SECURITY
Christopher has always been interested in how computers work. He started assembling his first system with birthday money when he was 13 years old and experimented with programming in high school. While pursuing his Information Security career in college, he led teams for CCDC and CTF events in order to share his love for computer security with those around him. Currently, he enjoys creating tooling and platforms that enable the TrustedSec red team to accomplish their goals.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Using Research to Gain Attack Intelligence
Learn how advanced research can help organizations stay ahead of sophisticated nation-state hackers and improve penetration testing results with Carlos Perez…
Using RPC in BOFs
Converting Windows RPC to Beacon Object Files for a flexible and secure payload.
Disabling AV With Process Suspension
Suspend Windows Defender to bypass Mimikatz, but be aware of system instability and potential security gaps, as this technique can be exploited by attackers.
Changes in the Beacon Object File Landscape
Understanding the power and limitations of Beacon Object Files (BOFs) in the context of Cobalt Strike, COFFLoader, and other frameworks, as a tool for…
RPC Programming for the Aspiring Windows Developer
Write a Windows developer's guide to programming Windows Remote Procedure Call (RPC) calls, exploring its implementation, advantages, and required setup,…
Perspectives on AI in the Cybersecurity Industry in 2026
Join us for this exclusive webinar where our experts will decode the complex relationship between artificial intelligence and cybersecurity in 2026. What will…
Adventures in Primary Group Behavior, Reporting, and Exploitation
If you’ve administered Active Directory (AD) for any significant time, chances are you’ve come across the primaryGroupID attribute. Originally developed as a…
News 5 Cleveland - Social Security numbers may have been exposed in data breach connected to local car dealership
A Massillon car dealership reports that an unauthorized actor accessed its network, potentially exposing customer names and Social Security numbers. Advisory…
Colonel Clustered: Finding Outliers in Burp Intruder
TL;DR, gimme the goods: https://github.com/hoodoer/ColonelClusteredExtension has been submitted to the Bapp store, awaiting approval.This is a Burp Suite…
Discord Livestream - Crash Course: Building an Analysis Strategy
In this livestream, we will cover the components of an incident response attack plan from a high level —including scoping, building an analysis strategy,…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
