I am currently employed as an Application Security Consultant at Neohapsis. Before Neohapsis, I was an Open Systems Architect for a financial consulting firm, as well as a Network Administrator at Argonne National Laboratories.
My expertise lies in software security assessment, network penetration testing, social engineering, security architecture and security research. I am the co-developer of NeoPI, a framework to aid in the detection of obfuscated malware. I have also written tools in Python, JavaScript, Ruby, and Bash. You can visit my github page for more information on my research projects and tools.
I have a Master’s of Science in Network Security from DePaul University and have the GPEN certification from SANS institute. I have also guest lectured at DePaul on Social Engineering.
I'm an avid musician and have been playing in heavy metal and obscure rock bands for the last decade. I also make electronic music as well as produce hip hop. You can hear some of my audio projects on Bandcamp and Soundcloud
This talk will discuss modern trends in web shell obfuscation, demonstrate techniques to detect them, and discuss some additional mechanisms in NeoPI scanning tool to aid in the identification of obfuscated web shells.
Presentation at Security B-Sides Chicago discussed trends in web shells, methods used to obfuscate them, and an overview of NeoPI to aid in the detection of web shells.
NeoPI is a Python script that uses a variety of statistical methods to detect obfuscated and encrypted content within text/script files. This article discusses some of the common trends in web malware obfuscation, techniques to detect them, and an overview of the NeoPI python tool.
Information security professionals are dancing on the edge, hoping some mix of technology, education and hard work will keep our organizations safe. But lately, the tempo has changed, and the specter of failure is looming large. The analytics portion of this cover article for Information Week goes in-depth into how infective antivirus software is at detecting malware.
NeoPI is a Python script that uses a variety of statistical methods to detect obfuscated and encrypted content within text/script files.
BBQSQL is a sql injection framework that utilizes concurrent attacks, menu based configuration, and statistical heuristics to speed up data exfiltration.
Tiny python script to quickly backup files and prevent snafus.