Sign in Subscribe

About me

This site has it's origins under the jckhmr.net brand, but I have since decided to use my full name instead. A five minute search would find my name out, so, it seems silly not to use it on my site. Besides .... life is too short, so why not?

💡
All opinions expressed on this site are mine and don’t reflect the policies or opinions of my employer in any shape or form.

Coming up on 20 years ago, I moved into information security. I started out with technical writing, providing secure coding training for devs, which then evolved into a security architect role, before moving into pentesting, starting with application security. I specialized a lot in mobile, delving into things such as encryption, APIs, and reverse engineering.

In early 2018 I officially moved into Red Teaming and although that included some Purple Teaming, it wasn't until Q3 of 2022 that I got to switch things around. I love the combination of the two disciplines and it helps keep me sharp. A skilled offender knows defence/defense and good defender knows how offensive security works too.

The majority of my career has been 'in-house' for various types of organization (insurance, legal, financial). I have also worked as a consultant which involved working with a wide variety of clients in sectors such as, but not limited to, finance/banking, software development, telecommunications, construction, education, gambling, healthcare, and workplace safety.

These days, my activities are increasingly focused on cloud - both in terms of targets and where I build offensive security infrastructure.

My apprenticeship is a never ending and immersive one … hence why I love the phrase ‘always learning’. I love automation technologies such as Ansible and Terraform to help me utilize DevOps principles in a Red Team context. You can read all about that here. AI is on a lot of people's radars right now too, and that is something I'm learning more about too.

I love to share my knowledge with others - either with my co-workers or people who are trying to get into the infosec industry. Hopefully you’ll learn a thing or two from what I have to share on this site.

If you need to get hold of me, reach out via twitter: jckhmr_t

Sign Up Today

If you subscribe today, you'll get full access to the website as well as email newsletters about new content when it's available. Your subscription makes this site possible. Thank you! :-)

Signup!