EXPERIENCE
With nearly a decade’s worth of industry experience, Sam began his career in a defensive role as a Security Analyst and Domain Administrator for a Fortune 500. Gaining an understanding of the complex composition of a large enterprise environment allowed Sam to subsequently pivot into the consultatory profession. Sam specializes in the development of security applications, Active Directory, and demonstrating risk wherever it may exist.
EDUCATION & CERTIFICATIONS
- B.S. Computer Science,
- Offensive Security Certified Professional (OSCP)
- Certified Information Systems Security Professional (CISSP)
INDUSTRY CONTRIBUTIONS
- Sam has contributed to open source projects and occasionally speaks at security conferences.
PASSION FOR SECURITY
Sam fundamentally enjoys solving complex problems in new ways. His creativity and appetite for continued learning drive his unremitting passion for security in an industry which continually provides new opportunities to learn, adapt, and overcome.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Obsidian, Taming a Collective Consciousness
The Problem On August 05, 2021, a member of the Conti ransomware group leaked some of the group's internal playbooks and technical documentation. Irrespective…
Optimizing and Customizing Phishing Campaigns using Caddy
Introduction Over the past year, I’ve begun to regularly utilize a number of techniques designed to increase the overall sophistication of my phishing…
BEC Basics: Your First Step to Thwarting Email Scams
Attackers never stop evolving their business email compromise (BEC) tactics, leveraging phishing, credential harvesting, and email spoofing to infiltrate…
Actionable Purple Team Simulation Online Training (November 7-8)
Learn how to create specific detections to identify early Indicators of Compromise (IOCs) in our online course. Designed for those looking to improve their…
Ask Me Anything: Advanced Cloud Pen Testing Scenarios
Cloud Penetration Tests are a critical component of cloud security, but integrating other testing methods can take the assessment to the next level. Adding…
Security Noise - Episode 7.4
Who's On My Network?
Spec-tac-ula Deserialization: Deploying Specula with .NET
Earlier this year, I gave a talk at Steelcon on .NET deserialization and how it can be used for Red Team ops. That talk focused on the theory of .NET…
Calculating Business Impact
In today’s digital landscape, gaining a deep understanding of how cybersecurity threats can affect business-critical systems is crucial for maintaining…
Let’s Clone a Cloner - Part 2: You Have No Power Here
Previously on Let's Clone a Cloner, I needed a long-range RFID badge cloner. There are many walkthroughs out there on how to build a cloner that are fantastic,…
Wild West Hackin' Fest 2024
TrustedSec is happy to return as a sponsor for Wild West Hackin' Fest in 2024! Visit us at our booth at the Deadwood Mountain Grand. Principal Security…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
