About Pentest Geek

Ethical hacking is a form of information security assurance. Typically, a trained industry professional performs a variety of focused attack simulations. These simulations target various components of the information system. They are highly targeted, and usually modeled after real-world threat scenarios. Ethical hacking can be used to uncover weaknesses in the security posture of a system, organization or entity. As the name suggests, ethical hacking is done “ethically” and without malicious intent. We do not post illegal or otherwise unethical hacking related materials anywhere on Pentest Geek.

Brandon McCann (zeknox) is veteran security expert with nearly a decade of professional experience in the Information Security industry. Brandon specializes in focused penetration testing, antivirus avoidance and advanced email phishing tactics.

Brandon is co-founder of Pentest Geek and the founder of the Phishing Frenzy open source project. Additionally, Brandon is an active part of the Metasploit project with over 10 committed Metasploit modules and continues to be very active within the security community.

Brandon is also certified as an Offensive Security Certified Professional (OSCP), Cisco Certified Entry Networking Technician (CCENT), GIAC Certified Forensic Analyst (GCFA), Microsoft Certified Professional (MCP) and SANS’ Lethal Forensicator honor. Brandon holds a Bachelor’s degree in Accounting from St. Cloud State University with a minor in Business Computer Information Systems.

Brandon has presented at a number of industry recognized conferences and written articles for various security outlets as seen below.

• DerbyCon 3.0: Presented: “Phishing Frenzy: 7 Seconds from Hook to Sinker”
• Defcon DC612: Presented: “Phishing Frenzy”
• THOTCON: Presented: “Phishing Frenzy: 7 Seconds from Hook to Sinker”
• DerbyCon 4.0: Presented: “Its Not Easy Being Purple”
• Security Weekly Episode 396: Presented: “Tech Segment: Phishing Frenzy”
• Hakin 9 Magazine: Article “How Do I phish? Advanced Email Phishing Tactics”

Royce Davis (R3dy) is a security expert specializing in network and application penetration testing.  He is highly recognizable throughout the security industry as a thought leader, open source software contributor, author and public speaker.

Royce’s primary focus is to train and develop ethical hacking professionals. In addition to staying current with the latest and deadliest ethical hacking trends. Royce brings a very broad range of ethical hacking skills to his team including:

• Obfuscation of malicious software code
• Network protocol fuzzing
• Web application penetration testing
• Exploit research & development
• Pentest automation

Royce has an Associate of Applied Science degree in Information Systems Management from Dakota County Technical College.  Royce is certified as a GIAC Certified Web App Penetration Tester (GWAPT), an Offensive Security Certified Professional (OSCP), an Offensive Security Certified Expert (OSCE), and has been accepted into the SANS mentor program for his outstanding performance as a student of the SEC542 “Web App Pentesting & Ethical Hacking” Course.