It's quite exciting. I have no idea what I'm doing. I bought the Zero-Point Security C2 Development course (https://training.zeropointsecurity.co.uk/courses/c2-development-in-csharp) and am going to work my way through the course. I'm hoping it will result in a basic solution which I can then add things to for work. One of my colleagues also has the course …
Certified Red Team Expert: Course Review
https://www.alteredsecurity.com/redteamlab Having recently passed the Certified Azure Red Team Professional, and having done the Certified Red Team Professional in 2022, I decided to try my hand at Altered Security's "advanced" red team certification. This claimed to have more in the way of security bypasses and cross-domain attacks, so I was excited to get stuck in. …
Certified Azure Red Team Professional: Course Review
https://www.alteredsecurity.com/azureadlab Having been a pentester for over a year and worked my way through a few infrastructure courses, mobile courses and web app videos as well as what I'd learnt on-the-job, I realised Azure was probably my main knowledge gap. Having already done the CRTP from Altered Security in 2022, the obvious choice was their …
Continue reading "Certified Azure Red Team Professional: Course Review"
SANS SEC575 Mobile Device Security and Ethical Hacking: Course Review
https://www.sans.org/cyber-security-courses/mobile-device-security-ethical-hacking/ https://www.giac.org/certifications/mobile-device-security-analyst-gmob/ Late on in 2022, my boss messaged me and asked if I would like to do a SANS course. This one was around mobile security. Having previously done a few mobile tests and done this course on Udemy AND having never done a SANS course before but heard how good they were, how …
Continue reading "SANS SEC575 Mobile Device Security and Ethical Hacking: Course Review"
Zero-Point Security Red Team Ops: Course Review
https://training.zeropointsecurity.co.uk/courses/red-team-ops Having passed Nikhil Mittal's great CRTP course in October 2022, I wanted something similar to sink my teeth into at the beginning of 2023. A colleague of mine had been working his way through the Zero-Point Security Red Team Ops lab and it sounded great, so I purchased it and started on my way. …
Continue reading "Zero-Point Security Red Team Ops: Course Review"
Certified Red Team Professional: Course Review
https://www.alteredsecurity.com/adlab In May 2022 I took the CPSA exam (and passed). This was my only cybersecurity cert other than the OSCP I had gained in October 2019, and so the first one I had gained while being a pentester as a job. The cert is just an exam, no related course, so as nice as …
Continue reading "Certified Red Team Professional: Course Review"
My Career Journey: An Update
Well, it's been a wild few years since I last wrote about where I was in my career (here, if you're interested). It was 5 months into Covid being in the UK and a huge amount of personal life changes have happened since then, lots of which have been very difficult. However, I have also …
Android App Hacking – Black Belt Edition: Course Review
https://www.udemy.com/course/android-app-hacking-black-belt-edition/ I was recommended this course by a colleague when I said I wanted to learn more about Android hacking, so I could feel confident auditing Android apps for clients. At full price it's £109 and, let me tell you, even if you can't get this on a deal it is more than worth it. …
Continue reading "Android App Hacking – Black Belt Edition: Course Review"
My Career Journey
On this day 11 years ago, I started my first full-time job as an admin assistant at a law firm. I had just finished my FdSc in Applied Computing (Distinction), following on from a National Diploma in Software Development (Distinction Distinction Merit). Another year on from that and the head of the Personal Injury department's …
Personal Security Quick Wins: Part 2
If you haven't yet, I recommend first going back and checking out Part 1 of this tips segment by clicking here. Great! Now that that's out of the way, here are some slightly more advanced/time-consuming tips on improving your personal security. Two-Factor Authentication In Part 1 of this series, I mentioned about using haveibeenpwned.com to …
Tales from the Encrypt 