After 13 years as a sysadmin for a regional ISP in Alaska, I jumped into security full time in 2012 for the financial sector and critical infrastructure.

As an independent researcher and a Hashcat beta tester and contributor, my password research interests include deliberately published hashes, DES crypt in its historical context, artificial hashes, and advancing password cracking as a profession.

More generally, I am interested in regional vulnerability management and incident response, TLS auditing, and enterprise asset detection and analytics. I belong to the ACM, USENIX, and the SANS Advisory Board. In my spare time, I apply my undue diligence to the taxonomy of Alaskan license plates. (Yes, that's a thing.) Also talk to me about ZTEX 1.15y FPGA boards, FreeBSD, pfSense, NTP, and the Rapid7 "DNS ANY" dataset.