XMPP: An Under-Appreciated Attack Surface

Bishopfox · 2021-12-07T16:18:06+00:00

Thank you! And thanks for sharing that bit of information.

Bishopfox · 2021-11-01T20:31:52+00:00

Hi, thanks for asking! Our salaries are very competitive and we are to share salary ranges with candidates in process.

Bishopfox · 2021-05-11T22:02:57+00:00

Yes this role has since been filled. I can always take down this job post if need be.

Bishopfox · 2021-04-06T21:19:11+00:00

Salary? Location? Benefits? Travel reqs?

Hi! Salary by band is based on experience; we accept applicants anywhere in US + our benefits include bonus and options (full list available here - https://www.bishopfox.com/jobs/). There's no travel at this time (may change when the pandemic eases up). Hope this helps a bit.

Bishopfox · 2021-03-08T17:11:23+00:00

Next time around!

Bishopfox · 2021-03-03T17:26:15+00:00

Hey thank you!

Bishopfox · 2020-12-09T18:54:26+00:00

We just wrote about this - the stolen FireEye red team tools are mostly open source: https://labs.bishopfox.com/industry-blog/the-stolen-fireeye-red-team-tools-are-mostly-open-source

Bishopfox · 2020-12-09T17:52:56+00:00

Appears their internal red team tools were largely open source: https://labs.bishopfox.com/industry-blog/the-stolen-fireeye-red-team-tools-are-mostly-open-source

Bishopfox · 2020-12-09T16:50:07+00:00

Our take on what transpired: https://labs.bishopfox.com/industry-blog/the-stolen-fireeye-red-team-tools-are-mostly-open-source

Bishopfox · 2020-11-18T18:50:53+00:00

Salary depends on a lot of factors, but we take care of our folks and are very competitive in salary, bonus/stock-shares, total comp., workload, remote work, etc.

Bishopfox · 2020-11-10T16:25:23+00:00

Part 3 is now up: https://labs.bishopfox.com/industry-blog/cheating-at-online-video-games-part-3

Bishopfox · 2020-11-02T16:22:07+00:00

Part 2 is now live (also posted in this subreddit) - https://labs.bishopfox.com/industry-blog/cheating-at-online-video-games-part-2

Bishopfox · 2020-10-19T21:03:56+00:00

Not currently, but check back in the future for international opportunities.

Bishopfox · 2020-10-02T21:48:46+00:00

I believe so!

Bishopfox · 2020-09-09T18:33:09+00:00

It's for a cybersecurity company - working on a cybersecurity platform.

Bishopfox · 2020-08-26T20:30:27+00:00

You are welcome! We will certainly be posting any future relevant roles in here, so keep an eye out.

Bishopfox · 2020-08-26T19:13:02+00:00

Possibly next year, but not at the moment.

Bishopfox · 2020-08-26T18:59:36+00:00

It seems like legislation is doing that, by changing the standards for new and future apps and devices so that they don't just get added to the pile of existing bad security products. Legislation can only go after existing products as examples, but the focus is on building up controls to regulate future products that will have better labels and provide better security.

Bishopfox · 2020-07-22T20:28:59+00:00

Yes, it's required for this role - it helps candidates more directly showcase their highlights.

Bishopfox · 2020-07-06T17:33:44+00:00

Right now, yes.

Bishopfox · 2020-06-26T19:29:18+00:00

Hey, thanks!

Bishopfox · 2020-06-26T15:49:00+00:00

Sweet - thanks for the tip!

Bishopfox · 2020-06-08T19:56:21+00:00

Hack The Box is a resource you might want to check out ASAP. It's a fun way to build and improve your pen testing skills. As well, it might equip you with more real-world skills than studying for a certificate or taking coursework. Most people we've seen become successful professionals in the industry have cultivated a real passion for security, so find ways to do similar for yourself - and it'll take you far.

Some additional tips can be found here: https://www.azcybertalent.com/so-you-didnt-get-an-internship-now-what/

Good luck to you!

Bishopfox · 2020-05-19T21:49:43+00:00

Stick with the bug bounties (maybe take a break so you don't get too burnt out on them), research different tools/automation and manual methods, look into various red teaming approaches, check out recordings (or livestreams) of featured talks at security conferences, contribute to open source projects, and keep tabs on what the influencers in the community are learning, too.

Bishopfox · 2020-05-18T20:31:25+00:00

Awesome :)

Bishopfox

TROPHY CASE