EXPERIENCE
Shane Jones is a Security Consultant at TrustedSec. Formerly enlisted in the USAF, AFSC: Security Forces (3P0X1), Shane specializes in adversarial tradecraft to play around with Information Security paradigms. Routinely performing social engineering, internal, external, and wireless engagements, Shane’s true passion goes back to his roots: physical security assessments.
EDUCATION & CERTIFICATIONS
- Associate of Applied Sciences: System Administration
- Offensive Security Certified Professional (OSCP)
- Cyber Intelligence Tradecraft Professional
PASSION FOR SECURITY
Shane spent his youth finding ways to circumvent strict rules, while staying out of handcuffs. He enjoys customizing social engineering campaigns that utilize publicly available information, whether he’s gathering information about organizational ecosystems, harvesting credentials for initial access, or smuggling malware.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
Black Hat USA Training - Adversary Tactics and Threat Hunting
During our Black Hat training, you will learn hands-on attacks that directly correlate to industry relevant TTPs, while performing threat hunting exercises and…
BSidesPGH 2025
TrustedSec is proud to sponsor and have a booth at this year's BSides Pittsburgh!
Dialing Into Deception: A Social Engineer's Playbook for Voice-Based Attacks
Join Targeted Operations Practice Lead Jason Lang and Senior Security Consultant David Boyd as they walk through different aspects of social engineering and…
Attacking JWT using X509 Certificates
Take a closer look at JWT signature verification using X.509 headers as we walk through an attack and demonstrate a Burp extension to exploit a known…
Security Noise - Episode 7.18
This week on Security Noise, we are hacking with AI! Listen as we discuss how AI can accelerate workflows, the pros and cons of using automation in penetration…
Layer 8 Conference
TrustedSec is proud to sponsor and have a booth at this year's Layer 8 Conference! Plus, Principal Security Consultant Adam Compton with being giving a talk.
Dragging Secrets Out of Chrome: NTLM Hash Leaks via File URLs
Figure 1 - We take our work very seriously. Capturing Hashes with DragonHashChromium-based browsers have an odd feature set that allows extensive drag-and-drop…
Live Discord Event – CUI Mythbusting with Chris Camejo
Join us for an exclusive live Discord session on Thursday, June 12 at 11:00AM ET/10:00AM CT with Director of Advisory Services Chris Camejo! This livestream…
Hunting Deserialization Vulnerabilities With Claude
In this post, we are going to look at how we can find zero-days in .NET assemblies using Model Context Protocol (MCP).SetupBefore we can start vibe hacking, we…
Common Mobile Device Threat Vectors
Mobile devices are a must have in today’s world for communication. With that being said, these devices do come with some risks when it comes to personal data.…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
