User:Andrew McNicol

I am a security consultant currently working as a DoD contractor. I spend my time doing incident response, malware analysis, and offensive security assessments. Most of my work is scoped around internet facing infrastructure, so web applications are a big footprint. I am a founder of a blog/podcast (primalsecurity.net), and a SANS mentor for SANS 560: Network Penetration Testing and Ethical Hacking (GPEN) course.

I hold a M.S. in Information Assurance, and numerious technical certifications (OSCP, OSWP, and several GIAC certs).