EXPERIENCE
- 10+ years IT
- 8+ years cybersecurity
- 5+ years penetration testing/consulting
EDUCATION & CERTIFICATIONS
- Associate in Science, Information Systems Technology, Community College of the Air Force
- Bachelor of Science, Computer Networks & Security, University of Maryland University College
- Offensive Security Certified Professional (OSCP)
- Offensive Security Wireless Professional (OSWP)
- GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
- GIAC Web Application Penetration Tester (GWAPT)
- GIAC Penetration Tester (GPEN)
- GIAC Security Essentials (GSEC)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- Certified Ethical Hacker (CEH)
- CompTIA Network+
- CompTIA Security+
INDUSTRY CONTRIBUTIONS
- Blog - www.n00py.io
- GitHub - https://github.com/n00py
- Presented at BSides Denver, BSides Puerto Rico, and NolaCon
PASSION FOR SECURITY
I just love popping shells.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
The SOCKS We Have at Home
Use OpenSSH to pivot through networks without complex tools, leveraging Windows 10 and Server 2019's default installation, and easily set up a bind shell for…
Practical Attacks against NTLMv1
Exploit NTLMv1 vulnerabilities to gain administrative access, leveraging authentication downgrade, LDAP relay, and Shadow Credentials attacks, with techniques…
Manipulating User Passwords Without Mimikatz
Manipulating User Passwords Without Mimikatz: Exploring Alternative Techniques for Lateral Movement and Privilege Escalation.
Perspectives on AI in the Cybersecurity Industry in 2026
Join us for this exclusive webinar where our experts will decode the complex relationship between artificial intelligence and cybersecurity in 2026. What will…
News 5 Cleveland - Social Security numbers may have been exposed in data breach connected to local car dealership
A Massillon car dealership reports that an unauthorized actor accessed its network, potentially exposing customer names and Social Security numbers. Advisory…
Adventures in Primary Group Behavior, Reporting, and Exploitation
If you’ve administered Active Directory (AD) for any significant time, chances are you’ve come across the primaryGroupID attribute. Originally developed as a…
Colonel Clustered: Finding Outliers in Burp Intruder
TL;DR, gimme the goods: https://github.com/hoodoer/ColonelClusteredExtension has been submitted to the Bapp store, awaiting approval.This is a Burp Suite…
Discord Livestream - Crash Course: Building an Analysis Strategy
In this livestream, we will cover the components of an incident response attack plan from a high level —including scoping, building an analysis strategy,…
WWL First News with Tommy Tucker - What to know about the big Verizon outage on Wednesday
A widespread Verizon outage left many without service, sparking conversation about digital dependence. Advisory Solutions Director Alex Hamerstone joins WWL…
CMMC Scope – Understanding the Sprawl
The CMMC program contains complex, and potentially confusing, scope requirements. Contractors that are preparing for a CMMC assessment will need to pay close…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
