I got my first taste of infosec at a previous startup where we were acquired, and i had to interface every day with the security team. The security team’s job was to accept bug bounty reports, decide if they were legitimate threats, and then pass them to me for remediation.
I wouldn’t say I was blue team as all the experience I was accumulating was in direct response to penetration tests. It was a lot of fun and it definitely planted a seed.
Fast forward several years later, and I have a much broader knowledgebase but that aspect of my interest had fallen by the wayside (not by choice). I’ve decided to give it a 100% try and spend as much time as possible working towards becoming 70% red team, 20% dev, 10% dev ops.
I’ll be updating this blog as I find fun things or complete various challenges.
First things first - I am going to work on the Matasano Challenge (aka Cryptopals) to get really good at python… and to be honest i was trying to get access to these for a long time before they were made public :) It used to be invite only but the email was not being actively watched and neither was their twitter account.
If you want to check them out, here they are - Matasano Challenge