Bishop Fox named “Leader” in 2024 GigaOm Radar for Attack Surface Management. Read the Report ›

Meet the Author

Rob Ragan Principal Researcher

Rob Ragan is a Principal Researcher at Bishop Fox. Rob focuses on pragmatic solutions for clients and technology. He oversees strategy for continuous security automation. Rob has presented at Black Hat, DEF CON, and RSA. He is also a contributing author to Hacking Exposed Web Applications 3rd Edition. His writing has appeared in Dark Reading and he has been quoted in publications such as Wired.

Rob has more than a decade of security experience and once worked as a Software Engineer at Hewlett-Packard's Application Security Center. Rob was also with SPI Dynamics where he was a software engineer on the dynamic analysis engine for WebInspect and the static analysis engine for DevInspect.

Rob holds a Bachelor of Science from Pennsylvania State University with a major in Information Sciences and Technology and a focus on System Development.

Articles Written:

Past Speaking Engagements:

Subject Matter Expertise:

  • Red Teaming
  • Threat Modeling
  • Web App
  • IoT
  • Social Engineering
  • Startups/small business security
  • High-level topical breaches
  • Incidence Response
  • CloudBots
  • Attack Chaining
  • Botnets
Rob Ragan

Resources from Rob Ragan

SmogCloud video thumbnail with overlay play button.

SmogCloud: Expose Yourself Without Insecurity - Cloud Breach Patterns

Presented at Black Hat 2020, this presentation looks at the most pragmatic ways to continuously analyze your AWS environments and operationalize that information to answer vital security questions. Demonstrations include integration between IAM Access Analyzer, Tiros Reachability API, and Bishop Fox CAST Cloud Connectors, along with a new open source tool SmogCloud to find continuously changing AWS internet-facing services.

Learn More
Cover slide deck expose yourself without insecurity blackhat arsenal 2020

SmogCloud: Expose Yourself Without Insecurity - Cloud Breach Patterns

Black Hat USA 2020 presentation looks at pragmatic ways to answer vital security questions in your AWS environment.

Learn More
Efficacy of micro segmentation illumio Video Thumbnail

Illumio Assessment Report: Interview with Raghu Nandakumara and Rob Ragan

Illumio Field CTO Raghu Nandakumara and Bishop Fox Principal Researcher Rob Ragan discuss the efficacy of microsegmentation in this interview.
Learn More
Cover slide ghost in the browser broad-scale espionage with bitsquatting oscar salazar rob ragan of bishop fox

Ghost In The Browser - Broad-Scale Espionage With Bitsquatting

Presentation from Kapersky SAS 2019 on an unfortunate side effect to achieving HTTPS everywhere and learn what can be done to mitigate the risk.

Learn More
Cover slide Ferris Bueller singing into microphone

Twist & Shout: Ferris Bueller's Guide to Abuse Domain Permutations

Presentation from Sqr00t 2019 explores the ins and outs of domain abuse, and how to prevent it.

Learn More
Pose a Threat: How Perceptual Analysis Helps Bug Hunters

Pose a Threat: How Perceptual Analysis Helps Bug Hunters

Presentation from OWASP AppSec California 2019 offers up dirty tricks to optimize the hunt for security exposures.

Learn More

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.