1-877-550-4728
Scott Nusbaum
Principal Security Consultant
Experience
Over 14 years of experience in software development and 10 years in Information Security. Experience range from Material Handling, Banking, to the Defense Industry.
Education & Certifications
BS in Computer Engineering and Masters in Computer Science with a focus on Cyber Informatics from the University of Cincinnati. GIAC Reverse Engineering Malware (GREM)
Passion for Security
Scott has always been fascinated with computers and software. He started programming in Elementary and has never stopped. Scott is passionate about learning the internal workings of software and systems. This led to Reverse Engineering, Malware, exploits and CTF.
Recent Blog Posts
Become The Malware Analyst Series: PowerShell Obfuscation Shellcode
In this second installment of the ‘Become a Malware Analyst Series,” Principal Incident Response & Research Consultant Scott Nusbaum focuses on PowerShell obfuscation by analyzing a PowerShell sample that was identified during an incident response. Scott will also touch on methods and tools to identify common Metasploit function hashes.
Read
Become The Malware Analyst Series: Malicious Code Extraction and Deobfuscation
In this video, Senior Incident Response & Research Consultant Scott Nusbaum demonstrates a method to extract and deobfuscate code from a malicious document. Upon rendering the code readable, Nusbaum works to gain an understanding of the goals the malware was attempting to accomplish and the processes by which it undertook that effort. This video is...
Read
Access Locked Files With TScopy
Wanted: TScopy Tool Testers GitHub Repo https://github.com/trustedsec/tscopy Introducing TScopy It is a requirement during an Incident Response (IR) engagement to have the ability to analyze files on the filesystem. Sometimes these files are locked by the operating system (OS) because they are in use, which is particularly frustrating with event logs and registry hives. TScopy...
Read
Recent Podcasts
Happy Fourth!
September 20, 2020
