Red Team Chief at [redacted]. Obscure security researcher. My handle flags bad AV. Attacker emulation, #PowerShell, #IoT sec, father of a bunch and Army Vet

Joined November 2011
In 15 years of red teaming a lot has changed. Something that hasn't is that there is nothing more difficult to attack than a network defended by well-trained and practiced people. People > $ecurity Budget. I suspect this trend will continue in the future.
10
84
322
Chris Campbell retweeted
Looks like bugtraq was just shut down. It hasn't been useful for a long time, but still an important footnote in vulnerability history. seclists.org/bugtraq/2021/Ja…
25
170
446
Today was the first time I was referred to as ahjussi to my face. It is not going well.
1
0
0
Chris Campbell retweeted
Me too :) The meta-question of "Why don't more people do it?" is something I struggle with. If it were a single reg key: 1) We'd have folks laughing that they could bypass it 2) Defenders wouldn't be any closer to solving the more dangerous problem (EXEs, DLLs)
2
2
4
Chris Campbell retweeted
Replying to @obscuresec
Until I have a need to execute .NET methods, I often forget that it's enforced.
1
1
8
What does PowerShell constrained language mode actually break? Why isn't it more widely used?
5
4
22
Chris Campbell retweeted
What’s a master? I am surprised by Python all the time.
6
59
413
Look forward to the Browns coming to beautiful Orchard Park for the AFC Championship game.
0
0
1
Congrats to the Erie bois.
0
0
1