Evan Hosinski

• Actively performed internal penetration assessments utilizing scripting techniques and open-source tools • Monitored, analyzed and infiltrated client wireless assets using scripts, open-source tools and pineapples to capture handshakes, perform VLAN Hops and clone or create access points • Performed Web Application Assessments utilizing BurpSuite and NetSparker • Developed phishing campaigns building a Virtual Private Server and GoPhish, crafting emails with HTML and CSS and configuring DNS Records on hosting sites • Developed and maintained OSINT script for the enumeration of client employees, services, email address patterns, phone numbers and more • Crafted payloads to be utilized in phishing campaigns for information extraction • Built, hardened and maintained shared server in Microsoft Azure used for poising attacks from cloud environment • Constructed automated Faraday Reporting in python for the creation of production level reports for clients • Performed manual and automated SAST Investigations on client source code in a variety of languages • Architected, developed and maintained innovative Phishing Application built in Golang, hosting an API service with PostgreSQL capable of capturing clicks, opens and engagement details