EXPERIENCE
Christopher Paschen has worked in Information Security in both the private and public sectors for more than 10 years. He has experience managing Active Directory and network services for a small team and has developed products that are used across organizational boundaries to accomplish a variety of red team tasks. Currently, he manages research direction and contributes to our internal implant and payload generation systems.
EDUCATION & CERTIFICATIONS
- Master of Science, Applied Computer Science, Dakota State University
- Bachelor of Arts, Computer and Network Security, Dakota State University
- Microsoft Certified: Azure Security Engineer Associate
PASSION FOR SECURITY
Christopher has always been interested in how computers work. He started assembling his first system with birthday money when he was 13 years old and experimented with programming in high school. While pursuing his Information Security career in college, he led teams for CCDC and CTF events in order to share his love for computer security with those around him. Currently, he enjoys creating tooling and platforms that enable the TrustedSec red team to accomplish their goals.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Using Research to Gain Attack Intelligence
Learn how advanced research can help organizations stay ahead of sophisticated nation-state hackers and improve penetration testing results with Carlos Perez…
Using RPC in BOFs
Converting Windows RPC to Beacon Object Files for a flexible and secure payload.
Disabling AV With Process Suspension
Suspend Windows Defender to bypass Mimikatz, but be aware of system instability and potential security gaps, as this technique can be exploited by attackers.
Changes in the Beacon Object File Landscape
Understanding the power and limitations of Beacon Object Files (BOFs) in the context of Cobalt Strike, COFFLoader, and other frameworks, as a tool for…
RPC Programming for the Aspiring Windows Developer
Write a Windows developer's guide to programming Windows Remote Procedure Call (RPC) calls, exploring its implementation, advantages, and required setup,…
Security Advisory: React2Shell (CVE-2025-55182) - Critical RCE Vulnerability
A critical vulnerability affecting React Server Components (RSC) is being actively exploited. Here's what to look for and what to do next.
Holy Shuck! Weaponizing NTLM Hashes as a Wordlist
Password reuse is common in Active Directory (AD). From an attacker’s perspective, it is a reliable path to lateral movement or privilege escalation. Most IT…
Security Noise - Hacker Family Feud
Our security experts compete to see which team can guess the most popular answers to cybersecurity industry questions on this episode of the TrustedSec…
Research on Windows Accessibility: Narrator.exe
Join us for our next Discord Livestream "Research on Windows Accessibility: Narrator.exe" on December 4 at 11:00AM ET! During this exclusive session, Principal…
What is a TrustedSec Program Maturity Assessment (PMA)?
The TrustedSec PMA is a tactical approach to evaluating the components, efficiency, and overall maturity of an organization’s Information Security…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
