Esteban Rodriguez

Senior Security Consultant

Experience

10+ years IT

8+ years Cybersecurity

5+ years Penetration Testing/Consulting

Education & Certifications

  • AS – Information Systems Technology – Community College of the Air Force
  • BS – Computer Networks & Security – University of Maryland University College
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Wireless Professional (OSWP)
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
  • GIAC Web Application Penetration Tester (GWAPT)
  • GIAC Penetration Tester (GPEN)
  • GIAC Security Essentials (GSEC)
  • GIAC Certified Incident Handler (GCIH)
  • GIAC Certified Intrusion Analyst (GCIA)
  • Certified Ethical Hacker (CEH)
  • CompTIA Network+
  • CompTIA Security+

Industry Contributions

Blog – www.n00py.io

Github – https://github.com/n00py

Presented at BSides Denver, BSides Puerto Rico, NolaCon

Passion for Security

I just love popping shells.

Recent Blog Posts

Practical Attacks against NTLMv1

By Esteban Rodriguez
In Penetration Testing, Security Testing & Analysis
1.1      Introduction This blog is meant to serve as a guide for practical exploitation of systems that allow for the NTLMv1 authentication protocol. While NTLMv1 is hardly ever needed anymore, a surprising number of organizations still use it, perhaps unknowingly. There are however some VPN products that still currently instruct their users to downgrade NLTM...
Read

Manipulating User Passwords Without Mimikatz

By Esteban Rodriguez
In Password Audits, Penetration Testing, Red Team Adversarial Attack Simulation, Security Testing & Analysis, Social Engineering
There are two common reasons you may want to change a user’s password during a penetration test: You have their NT hash but not their plaintext password. Changing their password to a known plaintext value can allow you to access services in which Pass-the-Hash is not an option. You don’t have their NT hash or...
Read
View all posts from Esteban

Want to work with Esteban Rodriguez or someone like him?

The TrustedSec team is comprised of experienced and qualified security professionals. Contact us to learn more about our services, our team, and how we can help you.
Contact Us