@tompohl profile picture
Tom Pohl @tompohl

My mission is to humbly serve the curious with excitement! tompohl.com/bio.png tompohl@infosec.exchange

Joined April 2008
  • Tweets 6,129
  • Following 906
  • Followers 1,260
458 Photos and videos
Pinned Tweet
Tom Pohl@tompohl
2 Jul 2018
My mission is to humbly serve the curious with excitement!
3
15
Tom Pohl retweeted
SecKC@sec_kc
30 Sep 2025
#SecKC is just 2 WEEKS AWAY! We've got the legendary @tompohl and @benjaminkelley giving talks with @mcohmi emceeing! Don’t miss the action, make sure to let us know you're going to be there! Full Details: seckc.org/upcoming-events/se… Register today: forms.gle/UoMr1Q8dSzGFNSG77

SecKC - October 2025 — SecKC.org

We’re back for another meeting at Kuckleheads! More info coming soon, but be sure to mark your calendars now!

seckc.org
1
3
2
217
Tom Pohl retweeted
LMG Security@LMGSecurity
8 May 2025
New from Penetration Testing Manager @TomPohl: How default #Cisco settings gave up full router configs—no credentials needed. Learn how small oversights can lead to big breaches. Read the blog: ow.ly/3Fqh50VPqJV #Cybersecurity #PenetrationTesting #Pentest #IT #CISO #DFIR

Cisco SNMP Exploit Case Study: Internal Penetration Test Using Default Router Settings | LMG...

Learn how LMG Security penetration testers extracted a Cisco router’s running configuration using default SNMP settings and built-in features — no exploits required. See how internal tests uncover...

lmgsecurity.com
1
1
137
Tom Pohl@tompohl
26 Feb 2025
Hacking Webapps for Fun and Profit! youtu.be/vN4lOAuibcc?si=UqR_… I had a really great time putting this presentation together and hopefully it'll inspire you to look at your applications more critically and fix them before someone malicions finds them! #PenTesting #WebApplication

Hacking Web Apps for Fun and Profit

by Tom Pohl

youtube.com
2
185
Tom Pohl retweeted
LMG Security@LMGSecurity
20 Feb 2025
Web apps are a top target for #hackers! From command injection to exposed APIs, small flaws can lead to major breaches. @Tompohl shares the common attacks & how to spot and stop them ow.ly/UJ7o50V3AOo #Cybersecurity #WebApp #CISO #Security #PenTesting #IT #DFIR #Pentest

Common Web Application Security Attacks: Real-World Lessons from the Field | LMG Security

Learn common web app attack strategies! We share how web apps get hacked, common attack tactics, and web application security strategies to keep your organization safe.

lmgsecurity.com
1
2
130
Tom Pohl retweeted
LMG Security@LMGSecurity
5 Feb 2025
Join LMG Security #Pentest expert @TomPohl for "Hacking Web Apps for Fun & Profit!" Watch tomorrow (2/6) at 6:30pm CT for web app hacks & prevention strategies. Live: Foundry Distilling Co., West Des Moines Live-stream: youtube.com/@SecDSM #SecDSM #DesMoines #WebApp #IT

SecDSM

youtube.com
1
190
Tom Pohl retweeted
LMG Security@LMGSecurity
12 Dec 2024
Cybercriminals are targeting APIs & costing businesses $75B annually! Our #PenetrationTesting Team Manager @tompohl shares why #WebApp API penetration testing is crucial & 5 things every #API #pentest should include: lmgsecurity.com/the-critical… #Cybersecurity #APISecurity #CISO #IT

The Critical Role of API Penetration Testing in Your Web App Security Strategy | LMG Security

Web App API penetration testing is frequently overlooked, but APIs are a growing target for attackers. Learn why API penetration testing is crucial and get some tips for what to include in an...

lmgsecurity.com
1
101
Tom Pohl@tompohl
4 Oct 2024
Thank you @Delta! You made a nearly impossible connection possible for me today ❤️
1
130
Tom Pohl@tompohl
22 Aug 2024
Are you curious about post exploitation of @F5 Big-IP’s? Check out my latest video on some techniques after you’ve compromised a box! youtu.be/WKEX53S3DSI?si=QzBi…

Pentest Pro Tips with Tom: F5 Big-IP Post Exploitation Techniques

Warning: Geeky technical content ahead!Welcome to another excitin...

youtube.com
1
123
Tom Pohl retweeted
gabsmashh
@gabsmashh
7 Aug 2024
There's a CTF on this bottle @tompohl
6
4
83
5,449
Tom Pohl retweeted
Andy Ellis
@csoandy
12 Jul 2024
There's a rule: don't trust even your friends with cameras when you're inebriated. That said, I think @tompohl does a simply amazing job delivering an intro for me from my home studio. I may have to splice this into all of my talks.
0:17
1
1
4
474
Tom Pohl@tompohl
8 Apr 2024
Thanks to @SecDSM for letting me come and give my presentation: “I Know What Your Network Did Last Summer!” Such a good time reconnecting with everyone! youtu.be/wwZuSpDP4YY?si=8u0t…

I know what your network did last summer.

Tom Pohl demonstrates how to exploit common misconfigurations, vuln...

youtube.com
4
257
Tom Pohl retweeted
Katie Mack
@AstroKatie
5 Oct 2014
🌓🌎🌞 <-- lunar eclipse 🌎🌓🌞 <-- solar eclipse 🌎🌞🌗 <-- apocalypse
298
37,142
47,815
Tom Pohl retweeted
JohnHalbrook@isuhawkeye
5 Apr 2024
Enjoying @tompohl talk @SecDSM #IKnowWhatYourNetworkDidLastSummer
1
2
170
Tom Pohl retweeted
Palpatine@palpatine42
25 Mar 2024
Une première en plus de 1000 opéras : la soprano a fait un malaise à 5 minutes de la fin de Simon Bocanegra (elle ne devait plus avoir grand chose à chanter), et l’opéra a tout bonnement été interrompu, sans saluts. Même le chef était stupéfait. 😳 Ahurissant.
3
1
1
351
Tom Pohl@tompohl
26 Feb 2024
If you haven’t patched the ScreenConnect vulnerability, I would bet your network is already compromised. I made a quick video to help you tell if your installation is vulnerable youtu.be/ud5FP-wHOcs?si=w6Ow…

Demo of the ConnectWise ScreenConnect Vulnerability

Watch as Tom Pohl, Penetration Testing Team Lead at LMG Security, d...

youtube.com
198
Tom Pohl retweeted
LMG Security@LMGSecurity
13 Feb 2024
Big news! Three new vulnerabilities in the CU Solutions Group CMS were discovered by LMG #Cybersecurity Consultant Emily Gosney @baybe_doll. These #security gaps can be used to gain access to every installation of CUSG CMS globally. Read more: ow.ly/AZ4j50QAFyH #DFIR #IT

LMG Researcher Uncovers 3 New Critical Zero-Days: CU Solutions Group Vulnerabilities Impact All...

Learn how LMG discovered 3 new zero-day CU Solutions Group vulnerabilities and read remediation advice! This is also a great penetration testing case study on how vulnerabilities are found and...

lmgsecurity.com
4
4
1,108
Tom Pohl retweeted
SecKC@sec_kc
13 Feb 2024
Back-to-back Super Bowl wins AND SecKC in the same week?? Best. Week. Ever. Come out to Tall Trellis tonight, celebrate the win, and hear talks on Security Automation and AI. One of these talks even has the coveted @tompohl seal of approval. seckc.org/upcoming-events/se…

SecKC - February 2024 — SecKC.org

Looking for a Valentine? Look no further! We got whatchu need. Some awesome hakcer content, boxes of pizzas, local beers, fire beats, and all your security friends in one place. Oh - and we’ll also...

seckc.org
2
5
299
Tom Pohl@tompohl
5 Jan 2024
Watch this: I recently stayed in a fancy hotel in Times Square and show how easy it is to clone my room key card with a flipper zero youtu.be/F3Xiej-ChgE?si=3ny_…
3
277
Tom Pohl@tompohl
1 Jan 2024
Happy Birthday to all my friends in infosec!
0:06
195
Tom Pohl@tompohl
20 Dec 2023
The internet was made for cats! I was so distracted by my kitty I also forgot to mention to change your default credentials on your UPS and use m365 app passwords! youtu.be/VPVDJQHF5sY?si=rX1K…

Tom's Pentest Hack of the Week #8: Using Default Credentials for UPS...

Warning: Geeky technical content ahead! Welcome to another exciting...

youtube.com
138
Load more