Subscribers and regular visitors to the blog will know I am a fan of hypnosis, and like most things I am passionate for I am always on the look out to discover new ways of doing things, gaining perspective of others and generally a healthy thirst for knowledge. You will of noticed I have purchased […]
Back in October 2012 I attended a Pickpocket Training Day with Professional Opportunist James Brown, and I blogged about it on this site here. It was a great session and many people have asked me about it, but not everyone has the time to travel, or may have logistical and financial constraints based on geographical […]
Depending on your history and how you got into InfoSec you may or may not of been exposed to the world of developer testing, if you did I am sure you have many unhappy memories of arguing why “real” data should not be used in the testing world, and if like me you have horror […]
I just received an email from Proofpoint, and its another one of their great Infographs. This is a great Infograph re-enforcing the fact that it only takes a single breach for the cost to be significant. Not surprisingly the information shows that 91% of All Attacks have some form of phishing attribution, and 95% of […]
So its a cold Monday morning in November 2013 and the phone rings, who could this be? Sadly its not someone calling me to tell me there are millions of pounds to be had if I can just send some money over, instead it turns out I have computer issues, but the friendly certified Microsoft […]
In my talk Head Hacking – The Magic of Suggestion and Perception, I talk about the best type of Social Engineer, this is the Master Manipulator. Many people have these skills naturally, but may not be consciously aware of...
BruCON is an annual security and hacker(*) conference providing two days of an interesting atmosphere for open discussions of critical infosec issues, privacy, information technology and its cultural/technical implications on s...
Always in search of new and interesting tools to speed up and improve Open Source Intelligence Gathering, I came across a nice little command like tool written in Ruby called GitRob by Michael Henriksen. Essentially what this t...
I am writing this blog post to share my thoughts on what it means to run and be part of a Corporate Red Team, I am sure there are similarities with Red Teams outside of the Corporate world but I don’t pretend to talk abou...
Depending on your history and how you got into InfoSec you may or may not of been exposed to the world of developer testing, if you did I am sure you have many unhappy memories of arguing why “real” data should not ...