Jonathan Claudius

New York, New York, United States Contact Info
2K followers 500+ connections

Join to view profile

About

Security leader with over 20 years of experience in a wide variety of security roles…

Activity

Join now to see all activity

Experience & Education

  • Asymmetric Research

View Jonathan’s full experience

See their title, tenure and more.

or

By clicking Continue to join or sign in, you agree to LinkedIn’s User Agreement, Privacy Policy, and Cookie Policy.

Licenses & Certifications

  • Executive Presence Graphic

    Executive Presence

    Cornell University

    Issued

  • CISSP - Certified Information Systems Security Professional

    International Information Systems Security Certification Consortium, Inc., (ISC2)

  • Security+

    CompTIA

Volunteer Experience

  • National Collegiate Cyber Defense Competition Graphic

    Red Team Member

    National Collegiate Cyber Defense Competition

    - Present 15 years 5 months

    Education

    I'm part of a small team of offensive security professionals that help educate college students that compete in a national cyber security competition to test their skills. Students inherit a "real-world" vulnerable environment and are tasked with defending that network while also juggling tasks requested from the bussiness. Our role is to emulate real-world offensive threats and simulations to help better prepare students for a career in information/cyber security.

  • The Metasploit Project Graphic

    Open-source Contributor

    The Metasploit Project

    - Present 13 years

    Science and Technology

    I've contributed a handful of items (mostly targeted research) to the Metasploit Framework community version over the years...

    - Added a post exploitation module for stealing RubyGem API keys
    - Added an exploit for a Cisco ASA SSL VPN Priviledge Escalation bug I discovered (CVE-2014-2127)
    - Added a Cisco ASA SSL VPN and Cisco ASA ASDM Bruteforcing Aux Modules
    - Added Password Hint extraction to the Registry-based hash extraction tools (hashdump and smarthashdump)
    - Fixed a…

    I've contributed a handful of items (mostly targeted research) to the Metasploit Framework community version over the years...

    - Added a post exploitation module for stealing RubyGem API keys
    - Added an exploit for a Cisco ASA SSL VPN Priviledge Escalation bug I discovered (CVE-2014-2127)
    - Added a Cisco ASA SSL VPN and Cisco ASA ASDM Bruteforcing Aux Modules
    - Added Password Hint extraction to the Registry-based hash extraction tools (hashdump and smarthashdump)
    - Fixed a critical hash corruption bug in the Registry-based hash extraction tools (hashdump and smarthashdump)
    - Added BNAT-Scan and BNAT-Router Aux Modules

  • Core Contributor

    PacketFu

    - Present 10 years 7 months

    Science and Technology

    I help develop PacketFu, a mid-level packet manipulation library written in Ruby. This library is used heavily in the Metasploit framework for flingin'​ exploits and other tools for "scapy-like" packet control.

  • Core Contributor

    c7decrypt

    - Present 12 years

    Science and Technology

    I wrote a library to decrypt and encrypt Cisco password hashes. The tool is open-source and is integrated in a variety of security/pentesting tools for generating and decrypting Type-7 and generating Type-5 Cisco proprietary hashing formats.

  • Board Member

    OWASP Maine

    - 1 year 9 months

    Science and Technology

    I helped organize and pay for things.

  • Creator/Lead Developer

    Mozilla SSH Observatory

    - Present 8 years 7 months

    Science and Technology

    I created the ssh_scan project, a command-line tool for scanning SSH servers. I also mentored a Mozilla Winter of Security (MWoS) team who helped create an API called ssh_scan_api. This added functionality allowed us to integrate this backend with the Mozilla Observatory, which gave birth to the Mozilla SSH Observatory. I'm currently responsible for the active development and project advocacy of these projects and continue to do project and code maintenance as well as the occasional new…

    I created the ssh_scan project, a command-line tool for scanning SSH servers. I also mentored a Mozilla Winter of Security (MWoS) team who helped create an API called ssh_scan_api. This added functionality allowed us to integrate this backend with the Mozilla Observatory, which gave birth to the Mozilla SSH Observatory. I'm currently responsible for the active development and project advocacy of these projects and continue to do project and code maintenance as well as the occasional new feature. This project is free and open to the public for use and helps make the web a safer place.

Patents

  • METHODS AND APPARATUS FOR NETWORK COMMUNICATION

    Filed US 61,490,526

Languages

  • English

    -

Organizations

  • American Homebrewers Association

    -

    - Present

Recommendations received

9 people have recommended Jonathan

Join now to view

More activity by Jonathan

View Jonathan’s full profile

  • See who you know in common
  • Get introduced
  • Contact Jonathan directly
Join to view full profile

People also viewed

Explore collaborative articles

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Explore More

Others named Jonathan Claudius

2 others named Jonathan Claudius are on LinkedIn

See others named Jonathan Claudius

Add new skills with these courses

See all courses