Skip to Main Content
All Trimarc services are now delivered through TrustedSec! Learn more

Oddvar Moe

Principal Security Consultant

EXPERIENCE
Oddvar Moe has worked in the IT industry since 1999. Initially, he began as a Microsoft consultant, helping a variety of public and private clients to implement Microsoft technology, before he sharpened his focused on security in 2012 as a malware reverser at a Security Operations Center. Since 2013, Oddvar has worked dedicatedly with offensive security either doing penetration tests or red teams. 

Oddvar has also taught many different courses and has been an active Microsoft Certified Trainer for many years. Within the setup of Microsoft technologies, Oddvar has expertise in products such as Advanced Threat Analytics, Windows Defender Advanced Threat Protection, AppLocker, System Center Configuration Manager, Deployment Toolkit, Active Directory, Group Policy, Exchange, Windows operating systems, and Remote Desktop Services. Oddvar currently works as a red teamer in the Targeted Operations Group at TrustedSec. While red teaming for Fortune 100 companies, Oddvar has gained a lot of experience from some of the most secure customers in the world. In total, he has more than 20 years of working experience in the IT industry and is passionate about Windows Security—so passionate, in fact, that Microsoft has awarded him the Most Valuable Professional Award for eight (8) years in row.

EDUCATION & CERTIFICATIONS

  • Microsoft MVP
  • GIAC Penetration Tester (GPEN)
  • Microsoft Certified Professional (MSCP)
  • Microsoft Certified Technology Specialist (MCTS)
  • Microsoft Certified Solutions Associate (MCSA)
  • Microsoft Certified Systems Engineer (MCSE)
  • Microsoft Certified Systems Administrator (MCSA)

INDUSTRY CONTRIBUTIONS
As a speaker, Oddvar has delivered top-notch sessions at conferences such as DerbyCon, IT Dev Connections, Paranoia, MVP Day, HackCon, Microsoft Security Week, and the Nordic Infrastructure Conference.

Oddvar actively contributes to the security community and is most known for his contributions around the LOLBins/LOLBAS and the Ultimate AppLocker Bypasslist. He also loves to research stuff and has uncovered many different persistence and code execution techniques, UAC bypasses, and AWL bypasses over the years that have since been used by APT groups. Oddvar also has a few CVEs to his record, such as CVE-2017-8625 and CVE-2022-24696.

Featured Blogs And Resources

Discover the blogs, analysis, webinars, and podcasts by this team member.

Blog September 05 2023

Creative Process Enumeration

Differentiate process architecture using virtual memory size in 64-bit and 32-bit processes.

Read about this article
Blog March 17 2023

Critical Outlook Vulnerability: In-Depth Technical Analysis and Recommendations (CVE-2023-23397)

Protect your organization from the Microsoft Outlook CVE-2023-23397 vulnerability with expert guidance and a simple remediation script.

Read about this article
Blog May 10 2022

Diving into Pre-Created Computer Accounts

Discover how to find a valid, unused computer account password using a vulnerable certificate template and a pre-created computer account, leveraging…

Read about this article
Blog March 11 2022

CVE-2022-24696 - Glance by Mirametrix Privilege Escalation

Lenovo ThinkPad X1 Extreme Gen 1 users, beware: a vulnerability in Glance software can be exploited to gain SYSTEM privileges, allowing malicious actions to…

Read about this article
Webinars February 12 2020

Unleashing the Power of AppLocker: How to Get Started and Go Beyond the Basics

Learn how to build a powerful AppLocker policy, stopping ransomware and automated attacks, and identify weaknesses in your configuration with expert guidance.

Read about this article
Events TrustedSec HQ | October 28 2025

ISC2 Cleveland Chapter Member Meeting - October 2025

ISC2 Cleveland Chapter October MeetupCome join us for our meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…

Read about this article
Events Lake Buena Vista, FL | October 27 2025

InfoSecWorld 2025

TrustedSec is proud to sponsor and hold a workshop at this year's InfoSec World in Lake Buena Vista, Florida. Make sure to visit our booth if you'll be there!

Read about this article
Training Resources October 25 2025

InfoSec World Workshop - Adversary Tactics and Threat Hunting

This immersive workshop will train you to simulate attacks, hunt threats, and build detections using manual, automated, and AI-driven methods across network…

Read about this article
Events Provo, Utah | October 21 2025

SAINTCON 2025

We are proud to sponsor and have a booth at this year's SAINTCON!

Read about this article
Events Deadwood, South Dakota | October 08 2025

Wild West Hackin' Fest 2025

We are excited to return to Wild West Hackin' Fest this year!

Read about this article

Empower your business through better security design.

Talk directly with our experienced advisory consultants to learn how we can help.