Job Experience
Red Team Specialist @ Google
Present
Founder @ Low Orbit Security
Present
Security Technical Lead @ /dev/null
Past
Instructor & Course Author (Practical Phishing Assessments) @ TCM Security
Past
Penetration Tester @ risk3sixty
Past
Prior Roles
Junior Client System Engineer, Cyber Security Researcher, IT Intern, Bookkeeper, Grocery store bagger
Side Projects & Tooling
gubble
An open source Go tool designed to audit Google Workspace group settings. It analyzes group membership settings to identify security risks.
USP
An open source Go tool to establish persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload.
MITRE ATT&CK Contributor
Event Triggered Execution: Udev Rules
Kubenomicon
An open source offensive security focused threat matrix for kubernetes with an emphasis on walking through how to exploit each attack.
Dredge
Dredge is a linux command-line tool for finding and logging secrets on a filesystem for manual inspection.
IMDSpoof
IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
Conference Talks
| Title | Event | Year |
|---|---|---|
| Breaching Kubernetes Clusters Workshop [Bare Metal Edition] | Red Team Village/Overflow | 2025 |
| Red Goes Purple: Executing The Attack Path | Red Team Village/DEFCON | 2024 |
| WTF is a Kubernete and How Do I attack It? | Black Hills Information Security Webcast | 2024 |
| Port 22 and You: A Match Made In Shell | Bsides Nashville | 2024 |
| WTF is a Kubernete and How Do I Attack it? | HackSpaceCon | 2024 |
| An Investigation of Exploitation by the Certification Federation | Antisyphon Snake Oil Summit | 2023 |
| Human Memory Management: Techniques for actionable security research | Bsides Atlanta | 2023 |
| A Tale Of Two Strands | Wild West Hackin' Fest | 2022 |
Certifications
KCNA
Kubernetes and Cloud Native Associate
GMLE
SANS - GIAC Machine Learning Engineer
GCSA
SANS - GIAC Cloud Security Automation
GNFA
SANS - GIAC Network Forensic Analyst
GCPM
SANS - GIAC Certified Project Manager
GXPN
SANS - GIAC Exploit Researcher and Advanced Penetration Tester
GCED
SANS - GIAC Certified Enterprise Defender
GDSA
SANS - GIAC Defensible Security Architect
GCIA
SANS - GIAC Certified Intrusion Analyst
GPYC
SANS - GIAC Python Coder
GSTRT
SANS - GIAC Strategic Planning, Policy, and Leadership
GCIH
SANS - GIAC Certified Incident Handler
GSEC
SANS - GIAC Security Essentials
eCPPTv2
eLearnSecurity Certified Professional Penetration Tester
eJPT
eLearnSecurity Junior Penetration Tester
Security+
CompTIA
Linux+
CompTIA
Network+
CompTIA
A+
CompTIA
Project+
CompTIA
Recent Training
| Course | Provider | Year |
|---|---|---|
| Certified Red Team Operator (CRTO) | Zero Point Security | 2024 |
| Hacking and Hardening Kubernetes | Inguardians | 2024 |
| Blockchain and Smart Contract Security | SANS | 2023 |
| Offensive Security Certified Professional (OSCP) | OffSec | 2023 |
| Breaching The Cloud | Antisyphon | 2023 |
| Kubernetes Under Siege | Antisyphon | 2023 |
| Active Defense & Cyber Deception | Antisyphon | 2022 |
Education
Masters of Science in Information Security Engineering
SANS Technology Institute - Current
Bachelors of Science in Cybersecurity
University of North Georgia