Michael Thumann is Chief Security Officer and head of the ERNW “Research” and “Pen-Test” teams. He has published security advisories regarding topics like ‘Cracking IKE Prshared Keys’ and Buffer Overflows in Web Servers/VPN Software/VoIP Software. Michael enjoys sharing his self-written security tools (e.g. ‘tomas’ a Cisco Password Cracker’, ‘ikeprobe’ IKE PSK Vulnerability Scanner’ or ‘dnsdigger’a dns information gathering tool’) and his experience with the community.
Besides numerous articles and papers he wrote the first (and only) German Pen-Test Book that has become a recommended reading at German universities.
In addition to his daily pen-testing tasks he is a regular conference-speaker and has also contributed exploit code to the Metasploit Framework. With more than 10 years of experience in computer security Michaels’ main interest is to uncover vulnerabilities and security design flaws from the network to the application level.