EXPERIENCE
- 10+ years IT
- 8+ years cybersecurity
- 5+ years penetration testing/consulting
EDUCATION & CERTIFICATIONS
- Associate in Science, Information Systems Technology, Community College of the Air Force
- Bachelor of Science, Computer Networks & Security, University of Maryland University College
- Offensive Security Certified Professional (OSCP)
- Offensive Security Wireless Professional (OSWP)
- GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
- GIAC Web Application Penetration Tester (GWAPT)
- GIAC Penetration Tester (GPEN)
- GIAC Security Essentials (GSEC)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- Certified Ethical Hacker (CEH)
- CompTIA Network+
- CompTIA Security+
INDUSTRY CONTRIBUTIONS
- Blog - www.n00py.io
- GitHub - https://github.com/n00py
- Presented at BSides Denver, BSides Puerto Rico, and NolaCon
PASSION FOR SECURITY
I just love popping shells.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
The SOCKS We Have at Home
IntroductionWhen performing penetration tests, we sometimes find that the systems or data we are targeting are not directly accessible from the network our…
Practical Attacks against NTLMv1
1.1 Introduction This blog is meant to serve as a guide for practical exploitation of systems that allow for the NTLMv1 authentication protocol. While NTLMv1…
Manipulating User Passwords Without Mimikatz
There are two common reasons you may want to change a user’s password during a penetration test: You have their NT hash but not their plaintext password.…
The Lost Underground
Join TrustedSec Principal Security Consultant Mike Felch for an eye-opening journey into the lost underground, where ingenuity, disobedience, and complexity…
TrustedSec Tech Brief - December 2024 Year-End Top 3 Roundup
We are rounding up our top Tech Brief stories of 2024! Director of Security Intelligence Carlos Perez goes over what we have seen the most of this year and his…
Security Noise - Episode 7.7
Amazing Stories in InfoSec
On-Demand BOF
From the team that brought you COFF Loader, CS-Situational-Awareness-BOF, CS-Remote-OPs-BOF, and numerous blogs on BOFs, we are excited to release our first…
BEC Basics: Your First Step to Thwarting Email Scams
Join Senior Security Consultant Steven Erwin and Security Consultant Caroline Fenstermacher as they cover the basics of BEC analysis, providing participants…
Discovering a Deserialization Vulnerability in LINQPad
Like most red teamers, I spend quite a lot of time looking for novel vulnerabilities that could be used for initial access or lateral movement. Recently, my…
A 5-Minute Guide to HTTP Response Codes
If you've done any network scanning or application testing, you've run into your fair share of HTTP response codes. If not, these codes will show up in most…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
