whois emalstm?

Emma Lilliestam is a context driven tester, security analyst, journalist and cyborg. She has many interest, but most of them cook down to one thing: finding vulnerabilities and fixing them.

She works as a test consultant at House of Test but posts and opinions are obviously her own. She is currently available for new assignments.

Emma is twetting under the handle @emalstm, and this is her Linkedin

She is one of the co-founder of tech conference adaconf. She loves going to conferences to talk about passwords, GDPR, secure development process, IT and Ethics, or cyborgs.

What is this blog about?

I have a feeling that I will not be able to keep to one subject. This blog will not only be about pen testing. It will not only be about SecDevOps or GDPR or soldering blinky stuff or science fiction.

Initially however, this blog will be mostly about me obtaining the OSCP certificate, proving my skills in penetration testing and ethical hacking.

The initial series, “Attacking my own site” is about testing out and evaluating penetration testing tools kits as well as defense tool kits. I learn about the usability, false positives/negatives, pitfalls and assumptions.

This style of writing came about because I wanted to document my labs and feel productive. I also see that my strength is not in knowing everything, but in my methodology. I will never land assignments where people want 15 years of iOS development, but I want assignments where management and organization understands that quality is a process and a mind set.

The downside to this style of writing is that I expose my own ignorance. But if nice people responsibly disclose the exposed weakness in my thinking, everyone wins. And I don’t want to contribute to the culture that creates impostor syndromes.