Tag Archives: pen testing

My Years at Sun Microsystems: From Dream Job to Oracle Redundancy

A memoir of nine years at Sun Microsystems, from the revelation of “The Network is the Computer” and parachuting into nasty projects, to the culture of contrarianism, the pressures of leadership, press training in Nice, and the slow decline into redundancies that culminated with Oracle’s takeover. It closes with reflections on philosophy, craft, people, and the enduring value of diversity and neurodiversity in engineering.

Continue reading

A Brief History of Penetration Testing: From Tiger Teams to PTaaS

This article traces the history of penetration testing from its military and intelligence roots in the 1960s to its formalisation through U.S. Tiger Teams and J.P. Anderson’s security frameworks. It follows the growth of pen testing into the commercial sector during the 1980s–90s, highlights key tooling milestones like SATAN, and explores its professionalisation in the 2000s via OWASP and PTaaS models. A dedicated UK section explains the roles of CESG, CHECK, CREST, and the NCSC in standardising and accrediting pen testing within British institutions. The article concludes with a reflection on how penetration testing continues to evolve in parallel with modern cyber threats.

Continue reading