Melvin Langvik

Senior Security Consultant

Experience

Melvin started as a C# Azure developer and integrations consultant after finishing his bachelor’s degree in computer engineering in 2018. During his time as a developer, he got hands-on experience with rapidly creating and deploying critical backend infrastructure for an international client base. It was during this period Melvin started to pursue his goal of transiting into offensive security. By the end of 2019, Melvin broke into the HackTheBox cybersecurity platform “Hall Of Fame” and successfully landed a job as a Penetration tester in January 2020. While working as a penetration tester, Melvin has contributed to the infosec community by releasing open-source and offensively-targeted C# based tools and techniques.

Education & Certifications

  • Bachelor’s degree in computer engineering
  • Certified Ethical Hacker (CEH)
  • Certified Red Team Operator (CRTO)
  • Offensive Security Certified Professional (OSCP)

Industry Contributions

Melvin is an active blogger and developer of open-source C# based offensive tooling. In 2020 he held a talk about the “AMSI.fail” project at the RootCon conference and released multiple open-source tools such as BetterSafetyKatz, SharpAppLocker, and NetLoader. Melvin is also the creator and maintainer of the SharpCollection project, a project which utilizes Azure DevOps PipeLines to automatically released pre-compiled binaries of all significant offensive C# projects, triggered by updates from their respective master branch.

Passion for Security

Melvin is incredibly passionate about interacting and contributing to the cybersecurity community.

Recent Blog Posts

TeamFiltration TrustedSec Security Blog

TeamFiltration V3.5.0 – Improve All the Things!

By Melvin Langvik
In Penetration Testing, Red Team Adversarial Attack Simulation
TeamFiltration was publicly released during the DefCON30 talk, “Taking a Dump In The Cloud”. Before the public release, TeamFiltration was an internal tool for TrustedSec’s offensive security operations, which was shared internally back in January 2021. In short terms, TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring Office 365 Azure AD accounts....
Read

Front, Validate, and Redirect

By Melvin Langvik
In Penetration Testing, Red Team Adversarial Attack Simulation, Research, Security Testing & Analysis
In the age of threat hunting, automated mass scanning, and the occasionally curious SOC, properly securing your command and control (C2) infrastructure is key to any engagement. While many setups today include a CDN Domain Front with a custom Nginx or Apache ruleset sprinkled on top, I wanted to share my recipe for success. Fully...
Read
View all posts from Melvin

Recent Webinars

Navigating the “Penetration Testing” Landscape

One name, many meanings. Validating the effectiveness of your security controls through penetration testing is a crucial element in constructing a robust security posture. However, performing the wrong level of analysis can be frustrating or even give an organization a...
Watch
View all webinars from Melvin

Recent Podcasts

TrustedSec Security Podcasts

Pre-Shared (Private) Keys

May 28, 2023

Calling All Malware Authors

May 28, 2023

Don’t Sideload This Podcast

May 28, 2023

Want to work with Melvin Langvik or someone like him?

The TrustedSec team is comprised of experienced and qualified security professionals. Contact us to learn more about our services, our team, and how we can help you.
Contact Us