B-Sides Tampa
February 29, 2020
Location: Tampa, FL
Learn more
Office 365 Security: What You Didn’t Know You Didn’t Know
March 04, 2020
Learn more
2020 IIA/ISACA IT Audit Seminar
March 05, 2020
Location: Buffalo, NY
Learn more

The World’s Foremost Security Experts

When founder David Kennedy created TrustedSec, he set out to change the security industry for the better with the goal of assembling the most technically advanced team of consultants and advisors. With a team handpicked not only for expertise and technical skill, but for ethical character and dedication, TrustedSec is committed to increasing the security posture of organizations around the world.

Senior Technical Experts
Senior Technical Experts
Research-focused
Research-Focused
dedicated & committed team
Dedicated & Committed Team
Executive-level Experience
Dave Kennedy

Security Resources

Dedicated to creating open source tools and content that help make the world more secure

Blog

Achieving Passive User Enumeration with OneDrive

Read more

News

Cybersecurity firm plans move to Fairlawn

Read more

The TrustedSec Podcast

Citrix Mayhem

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, David Boyd, Alex Hamerstone and Rob Simon.

Play Citrix Mayhem podcast Listen to the Podcast

Citrix Mayhem

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, David Boyd, Alex Hamerstone and Rob Simon.

Title: Critical Exposure in Citrix ADC (NetScaler) – Unauthenticated Remote Code Execution

URL: https://www.trustedsec.com/blog/critical-exposure-in-citrix-adc-netscaler-unauthenticated-remote-code-execution/

Author: David Kennedy

 

Title: Microsoft patches Windows 10 after the NSA quietly told it about a major vulnerability

URL: https://www.cnbc.com/2020/01/14/microsoft-to-patch-windows-10-after-nsa-finds-vulnerability.html

Author: Kate Fazzini

URL2: https://news.ycombinator.com/item?id=22048619

Author2: tptacek

URL3: https://curveballtest.com/index.html

Author3: SANS Internet Storm Center

 

Title: Seven Years Later, Scores of EAS Systems Still sit UN-Pached, Vulnerable

URL: https://securityledger.com/2020/01/seven-years-later-scores-of-eas-systems-sit-un-patched-vulnerable/

Author: Paul Roberts

Featured Open Source Projects

The Social-Engineer Toolkit (SET)

SET is a powerful tool for social-engineering.

PenTesters Framework (PTF)

The PenTesters Framework (PTF) is a Python script designed for Debian/Ubuntu/ArchLinux based distributions to create a similar and familiar distribution for Penetration Testing.

TrevorC2

TrevorC2 is a legitimate website that tunnels client/server communications for covert command execution.

UNICORN

UNICORN is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory.

Physical Security Assessment Documentation

This is a collection of legal wording and documentation created to be a template for others to use and to protect themselves when conducting physical security assessments.

TrustedSec Sysmon Community Guide

The goal of the Community Guide is to be the best resource possible for all things Sysmon.
See all open source projects