EXPERIENCE
Kevin Clark is a member of the Targeted Operations team and has over five years of experience in penetration testing and offensive security roles. He has performed Red Team and penetration tests for large and small companies alike. Before TrustedSec, Kevin was a software developer focused on creating offensive security tools.
EDUCATION & CERTIFICATIONS
- Certified Red Team Operator (CRTO)
- Certified Red Team Lead (CRTL)
- Offensive Security Certified Professional (OSCP)
- Red Hat Certified System Administrator (RHCSA)
PROFESSIONAL AFFILIATIONS
Kevin is a contributor open-source security tools such as Metasploit and PowerShell Empire. He is also a training instructor at industry recognized conferences such as BlackHat and DEFCon.
INDUSTRY CONTRIBUTIONS
Kevin maintains Ek47, an environmental keying payload encryptor for usage on Red Team engagements. He also maintains Badrats, a custom Command and Control (C2) tool designed for initial access. He has presented at various conferences about these tools and other topics related to red teaming and malware development.
PASSION FOR SECURITY
Kevin loves to share his skills and knowledge in the information security community. Outside of work, he is an adjunct teacher at Century College in White Bear Lake, Minnesota. During college, Kevin was the team captain for his college’s Collegiate Cyber Defense Competition team and took first place in the Minnesota state competition 2 years in a row. He also hosts and writes blog posts about security related topics at https://henpeebin.com/kevin/blog.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Operator's Guide to the Meterpreter BOFLoader
Unlock Meterpreter's full potential with the BOFLoader, elevating it to a modern C2 payload, and discover its capabilities for dynamic functionality addition,…
Welcome to 2018! A Meltdown and Spectre Run-Through
Understanding Meltdown and Spectre: Expert Analysis and Fixes for a Safer 2018
Security Advisory: React2Shell (CVE-2025-55182) - Critical RCE Vulnerability
A critical vulnerability affecting React Server Components (RSC) is being actively exploited. Here's what to look for and what to do next.
Holy Shuck! Weaponizing NTLM Hashes as a Wordlist
Password reuse is common in Active Directory (AD). From an attacker’s perspective, it is a reliable path to lateral movement or privilege escalation. Most IT…
Security Noise - Hacker Family Feud
Our security experts compete to see which team can guess the most popular answers to cybersecurity industry questions on this episode of the TrustedSec…
Research on Windows Accessibility: Narrator.exe
Join us for our next Discord Livestream "Research on Windows Accessibility: Narrator.exe" on December 4 at 11:00AM ET! During this exclusive session, Principal…
What is a TrustedSec Program Maturity Assessment (PMA)?
The TrustedSec PMA is a tactical approach to evaluating the components, efficiency, and overall maturity of an organization’s Information Security…
NIST CSF 2.0 - From Compliance to Confidence
During our next webinar, our experts will cover the latest evolution of the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF),…
KTVU Fox 2 San Francisco - Too good to be true? Cyber Monday Warning
Protect your purchases this Cyber Monday! Director of Advisory Services Chris Camejo speaks with KTVU Fox 2 to share essential tips on how to safeguard your…
Schwab Network | Morning Movers - Zscaler (ZS) Earnings Preview and Cybersecurity Outlook
Advisory Solutions Director Alex Hamerstone joins Morning Movers to preview Zscaler (ZS) earnings and discuss the overall cybersecurity software space. He…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
