Skip to content
View PaidDues's full-sized avatar

Block or report PaidDues

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
PaidDues/README.md

Max Dues | Security Projects and Technical Writeups

I came to cybersecurity by having to secure my own business first. After co-founding Prime Lot Services and running its IT, I trained into security to address the company's growing exposure, earned my CompTIA Security+, and stepped into the security lead role. Today I work across vulnerability management and security operations through a cybersecurity internship with Log(N) Pacific, and I apply that experience to finding real-world vulnerabilities and documenting them in formal disclosure reports.

The work below reflects that path: responsible disclosures submitted to real organizations, a published security advisory, threat hunts, and a full vulnerability management program. Feel free to look through them.

πŸ•΅πŸΌβ€β™‚οΈ Submitted Responsible Disclosures (Sanitized) & Information Security Advisories

πŸ›‘οΈ Enterprise Vulnerability Management Projects

πŸ”¬ Threat Hunting / Incident Response & Recovery Projects

🧰 Security Compliance & Automation Projects

πŸ“š Certifications / Continued Education

πŸ” How I Stay Up To Date With The Industry

πŸ’Ž Resources I Recommend

Popular repositories Loading

  1. PaidDues PaidDues Public

  2. Vulnerability-Management-Program Vulnerability-Management-Program Public

  3. PII-Exposure-via-Clipboard-Entries-Submitted-Disclosure-Sanitized-Real-World-Case-Study- PII-Exposure-via-Clipboard-Entries-Submitted-Disclosure-Sanitized-Real-World-Case-Study- Public

    End-to-end Report: vulnerability description β†’ attack path β†’ business impact β†’ control mappings (NIST 800-53/ISO 27001) β†’ risk assessment β†’ risk strategy β†’ prioritized remediation β†’ verification, v…

  4. STIGS STIGS Public

    Showcase of DISA STIG remediations

    PowerShell

  5. Security-Advisory---QR-Code-Overlay Security-Advisory---QR-Code-Overlay Public

    A security advisory on the growing, but overlooked threat of malicious QR code overlays targeting industries such as travel, hotel, personal banking, restaurant, clinics, and more.

  6. threat-hunting-scenario-tor-internal-threat threat-hunting-scenario-tor-internal-threat Public

    Threat hunt report investigating unauthorized internal Tor Browser usage on a corporate endpoint using Microsoft Defender for Endpoint and KQL