Meet The NetSPI Agents
Get to know the 350+ in-house security experts who specialize in everything from web apps to AI. This team represents the deep domain expertise that reinforces NetSPI’s quality no matter the focus of your security program.
Over 350 In-House Security Experts With The Right Credentials For Your Program
James Albany
Sr. Director, Infrastructure Testing
Sam Beaumont
Director, Hardware & Integrated Systems Testing
Thomas Elling
Director, Cloud Pentesting
Karl Fosaaen
VP, Research
Eric Gruber
VP, Services Research
Giles Inkson
Director, Red Team Operations
Andre Joseph
Director, Thick Application Pentesting
Sam Kirkman
Director of Services, EMEA
Nick Moreno
Director, Mobile App Pentesting
Antti Rantasaari
Sr. Director, Application Security
Paul Ryan
Sr. Director, Application Pentesting
Patrick Sayler
Director, Social Engineering
Paroksh Sharma
Director, Secure Code Review
Scott Sutherland
VP, Research
Larry ‘Patch’ Trowell
Technical Director, Hardware & Integrated Systems
Josh Weber
Director, Network Pentesting
Kimberly Wiles
Director, AI / ML Pentesting
Philip Young
Director, Mainframe
Open-Source Cybersecurity Tools
Browse pentesting tools The NetSPI Agents created to help collectively advance the cybersecurity industry.
Responsible Vulnerability Disclosures
CVE-2024-21378 — Remote Code Execution in Microsoft Outlook
Learn how NetSPI discovered that Microsoft Outlook was vulnerable to authenticated remote code execution (RCE) via synced form objects.
The Silk Wasm: Obfuscating HTML Smuggling with Web Assembly
A new technique for HTML smuggling using Web Assembly helped us bypass potential malware detection.
Escalating Privileges with Azure Function Apps
Explore how undocumented APIs used by the Azure Function Apps Portal menu allowed for directory traversal on the Function App containers.
