Knowing your enemy
Every day code is written and published, each change carrying potential security issues. Even seemily benign alterations can pose a threat, making catching security bugs a challenge - it only takes a single line of code to bring down a whole system.
Traditional techniques are quickly being replaced with hands-on approaches as people discover that the best way to defend against malicious attacks is to view the system from the point of view of an attacker intent on causing havoc.
Like a pro
Once you start to think like an attacker, you start to see opportunities and flaws which would otherwise go unnoticed - until it's too late. If you're reading this, you may have seen my work with Google, PayPal, Nokia, Tesla, Bugcrowd, CrowdCurity…
I'm available for hire - if you have an website, application or service that needs to be secure, drop me a line!