// offensive security · training · advisory · research
Freelance advisory and consultancy specialising in cybersecurity training development and security advisory services. 15+ years in offensive security.
creator of MAE · author of Learning The Ropes · United Kingdom
01 Training & Courses
Adversary-focused training content, from self-paced courses to collaborative lab environments.
An intermediate red team course covering 14 modules across the full lifecycle of malwareless operations. Mapped to 101+ MITRE ATT&CK techniques across all 14 tactical categories. Focuses on operating without malware or implants, blending into environments and exploiting native capabilities. All labs are self-hosted, with no shared infrastructure. Built for offensive practitioners, internal red teams, detection engineers, and defenders looking to understand real adversary behaviour.
View Course →
Adversary Architect on several XINTRA Simulations, designing realistic attack scenarios, infrastructures, and training environments. Contributed to TechTonic, VirusVipers, and MeowIslands labs, engineering attack chains, adversarial infrastructure, and authentic challenge environments. Developed bespoke adversary tools to emulate real-world threats, support DFIR activities, and enhance lab capabilities.
Explore Simulations →02 — What We Do
Training and advisory rooted in active offensive security practice. If it doesn't hold up on a real engagement, it doesn't end up in the content.
Full curriculum design and delivery, from concept to self-hosted lab environment. Every module maps to real adversary technique, not checkbox compliance. Built for offensive practitioners, internal red teams, and defenders who want to understand the other side.
Strategic support for security teams and leadership. Scoping red team programmes, making sense of findings, or navigating regulatory frameworks like DORA and TIBER-EU. Advice grounded in operational reality, not just frameworks on paper.
End-to-end design of realistic attack scenarios and lab environments for training platforms, CTFs, or internal exercises. Attack chains, adversarial infrastructure, and bespoke tooling that reflects how threat actors actually operate.
Have a project in mind? advisory[at]zsec[dot]red
03 Publications
Two globally available books offering in-depth insights into building, exploiting, and securing environments. Available on Leanpub and Amazon worldwide.
A hands-on guide taking you from zero to junior penetration tester level, covering the fundamental skills and knowledge needed to break into information security.
Building on the foundations of LTR101, diving deeper into defensive, offensive, and collaborative security topics for those looking to expand their expertise.
04 Explore
Contributing to the security community through knowledge-sharing, technical assurance, and training content.
Technical write-ups and research from the field.
blog.zsec.ukOpen-source tools, scripts, and security resources.
github.com/ZephrFishCompany updates and professional network.
linkedin.com/company/zephrsecSecurity topics, walkthroughs, and research discussions.
youtube.com/zephrsecLandscape and street photography.
photos.zsec.uk05 Side Projects
Projects built on the side: tools and products exploring ideas beyond the day job.
A local-first desktop app for tasks and email contact ranking. No cloud, no subscription, your data stays on your machine. Built with Tauri & React.
larko.app
Investigation platform for the UK water industry. Water balance, GIS, field investigations, and evidence capture in one workspace. Every drop accounted for.
clydehq.io06 From the Blog
Technical write-ups, research, and insights from the field. Subscribe via RSS
Loading latest posts…
07 Get in Touch
Interested in training, advisory services, or collaboration? Reach out through any of these channels.
