New job at BAO Systems: Chief Unicorn Wrangler

As some of you may have seen on LinkedIn, I am now working full-time for BAO Systems. I tried to get a silly new title, but I figured “Senior Software Architect” would be a bit more professional. This is somewhat a return to familiar ground as I will be helping move research forward for many NGOs ...

CSSLP Certified

CSSLP Certified
On last official day with Redport Information Assurance, I received confirmation of my Certified Secure Software Lifecycle Professional acceptance by (ISC)2. I am very grateful that Redport repeatedly covered my training and certification process. Alas, the story of our mutual separation will be a separate blog post.

Back on the market

Back on the market
After three years working at the Department of Energy as a Senior Security Software Engineer, I am back on the job market. If you are looking for a web application developer with over 15 years experience, please send me a line. Partnering with my infosec company (Redport Information Assurance) is also cool. I have TS ...

Is the CSSLP worth it? 1

Last week I passed the (ISC)2 Certified Secure Software Lifecycle Professional (CSSLP) exam. Here are some thoughts (not bound by the (ISC)2 NDA): Cert Types There are two classes of certification within the (ISC)2 family: member and associate. The only difference between the two is how many years of experience you have in the subject area. For full ...

ZCE Complete

ZCE Complete
I finally got off my rear and took the Zend Certified PHP Engineer test. And Passed. I took the PHP 5 CE test way back in 2007, so I figured it was about time to refresh things. Right before PHP 7.

Taking Flight with AngularJs

Taking Flight with AngularJs
Lately at work we have been getting into the Flight PHP framework for simple REST-like services with an AngularJS front end. We have had to do a bit of juggling however to get one of the nicer AngularJS features to work: “html5Mode”. Here is what we did.

tek13 Basic Intrusion Detection Slides 1

tek13 Basic Intrusion Detection Slides
Here is the slide deck for my talk on BasicIntrusionDetectionWithPHPIDS. If you were one of the 19 attendees, please give feedback at Joind.in

ZF1 still can’t parse dates right

ZF1 still can't parse dates right
I was running into some date validation problems between jQuery datepicker and ZF1. My client wanted one date picker to use a “January 01, 2000” format, and the others a “01/02/2000” format. Seems simple enough.

AngularJs Zend Framework 1 Resource Plugin

I whipped up a simple ZF1 resource plugin for AngularJs called AngularZF1 and dropped it onto github. We have started using Angular at work and I thought, why not mimic how the ZendX_JQuery plugin works. Right now it doesn’t add much beyond just adding the script tag to your <head>. Enjoy, all you who are still on ...

Oracle in PHP Frameworks

I have been using Zend Framework 1.x at work for some time now. I appreciate the large number of components, many of which my system uses on a daily basis. Yes, it is a large library, but we have a very large application that probably does too many things. ZF2 is coming out soon and ...