Quantcast
Justin Clarke

Biography

Justin Clarke is a Principal Security Consultant with Gotham Digital Science, based in the United Kingdom. He has many years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.

Justin is the co-author of Network Security Tools: Writing, Hacking, and Modifying Security Tools, a contributing author to Network Security Assessment: Know Your Network, 2nd Edition, as well as having been invited to speak at a number of conferences on security topics, including Blackhat, EuSecWest, OSCON and RSA.

Justin is active in developing security tools for penetrating web applications, servers, and wireless networks and as a compulsive tinkerer he can't leave anything alone without at least trying to see how it works.

Books

Blog

German anti-hacker law bites hard

August 21 2007

The recent change to German law to implement the EU Framework Decision on Attacks against Information Systems (enacted in Paragraph 202c of the German Penal Code) has caused many security researchers based in Germany to look to move elsewhere, or to remove previously available research findings. The change in the… read more

Running Nessus 3 on Windows XP

August 06 2007

I recently had reason to spend a while working with Nessus on Windows XP (Service Pack 2). Usually, I use a Nessus Server running on Linux, either running locally if I am onsite, or one installed on our company infrastructure for scanning from the Internet. In fact, you read the… read more

Detecting hosts bridging your network to a wireless network

August 04 2007

Update: Ron Gula corrected me on this - this is available on the free registered feed. A little while back I spotted this article on the Tenable Blog in reading my morning RSS feeds - Tenable have added a plugin with the ability to interrogate Windows machines for the wireless… read more

Detecting hosts bridging your network to a wireless network

July 30 2007

A little while back I spotted this article on the Tenable Blog in reading my morning RSS feeds - Tenable have added a plugin with the ability to interrogate Windows machines for the wireless SSID that they are currently associated to. Why would this be handy? How about to identify… read more

The quest for valid XHTML...

July 10 2006

Recently I decided for some reason to run my site (also, like the O’Reilly blogs, based on Moveable Type) through the W3C Validator to check to see if I was generating valid XHTML. If you’ve ever done this, you shouldn’t be surprised to find out that my site was anything… read more

Blackhat et al

July 10 2006

Its getting to that time of year when thousands of security professionals and hackers congregate in Las Vegas for the Blackhat and Defcon conferences. My company is generously sending me and a few colleagues to Sin City to attend :-) The Blackhat line up is pretty strong, and this year… read more

Beta release of the Oedipus Web Application Scanner is released...

June 09 2006

Related link: http://oedipus.rubyforge.org The Oedipus Web Application Scanner project (that I am involved in some of the development) has just released it’s first beta release - version 1.8.1. Oedipus is a penetration testing focused tool, designed for penetration testers, and for technical security or web development folks to test their applications… read more

Beta release of the Oedipus Web Application Scanner is released...

April 07 2006

The Oedipus Web Application Scanner project (that I am involved in some of the development) has just released it's first beta release - version 1.8.1. Oedipus is a penetration testing focused tool, designed for penetration testers, and for technical security or web development folks to test their applications for… read more
Justin Clarke