EXPERIENCE
Kevin Clark is a member of the Targeted Operations team and has over five years of experience in penetration testing and offensive security roles. He has performed Red Team and penetration tests for large and small companies alike. Before TrustedSec, Kevin was a software developer focused on creating offensive security tools.
EDUCATION & CERTIFICATIONS
- Certified Red Team Operator (CRTO)
- Certified Red Team Lead (CRTL)
- Offensive Security Certified Professional (OSCP)
- Red Hat Certified System Administrator (RHCSA)
PROFESSIONAL AFFILIATIONS
Kevin is a contributor open-source security tools such as Metasploit and PowerShell Empire. He is also a training instructor at industry recognized conferences such as BlackHat and DEFCon.
INDUSTRY CONTRIBUTIONS
Kevin maintains Ek47, an environmental keying payload encryptor for usage on Red Team engagements. He also maintains Badrats, a custom Command and Control (C2) tool designed for initial access. He has presented at various conferences about these tools and other topics related to red teaming and malware development.
PASSION FOR SECURITY
Kevin loves to share his skills and knowledge in the information security community. Outside of work, he is an adjunct teacher at Century College in White Bear Lake, Minnesota. During college, Kevin was the team captain for his college’s Collegiate Cyber Defense Competition team and took first place in the Minnesota state competition 2 years in a row. He also hosts and writes blog posts about security related topics at https://henpeebin.com/kevin/blog.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Operator's Guide to the Meterpreter BOFLoader
Unlock Meterpreter's full potential with the BOFLoader, elevating it to a modern C2 payload, and discover its capabilities for dynamic functionality addition,…
Welcome to 2018! A Meltdown and Spectre Run-Through
Understanding Meltdown and Spectre: Expert Analysis and Fixes for a Safer 2018
You Had Us at the First Alert: A Guide to Finding Frequently Missed Detections
Join us for this webinar to get a clearer picture of where your detection coverage has blind spots and a practical roadmap for closing them before a real…
ISC2 Cleveland Chapter Member Meeting - March 2026
ISC2 Cleveland Chapter March MeetupCome join us for our meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
Policy as Code: Stop Writing Policies and Start Compiling Them
The Problem Nobody Wants to Talk AboutLet me paint a picture most security leaders will recognize.You have 30+ policies living as Word documents on SharePoint.…
Building a Detection Foundation: Part 4 - Sysmon
Filling the Gaps Native Logging Can'tAt this point in our series, we have Windows Security events capturing logon sessions and process creation, and…
Security Noise - AI is Exploring The Deep Blue CVEs
On this episode of Security Noise, we explore the cutting-edge use of AI in vulnerability research, exploit development, and cybersecurity defense with guests…
ABC7 Chicago - March Madness betting, ticket scams targeting college basketball tournament fans
March Madness is in full swing and so are the scams, the latest being fake tickets sales and "bogus" bracket challenges. Advisory Solutions Director Alex…
Discord Livestream - AMA: Incident Response
Ask us anything about incident response! Join us for an exclusive Discord Livestream with IR Practice Lead Ryan Macfarlane.
Full Disclosure: A Third (and Fourth) Azure Sign-In Log Bypass Found
Invisible password sprays. Invisible logins. Full tokens returned.Nyxgeek here. It's 2026 and I've got two more Azure Entra ID sign-in log bypasses…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
