About

Diese Seite ist auch auf Deutsch verfügbar.


VidraSec was founded in 2024 by me, Martin Grottenthaler.

I have worked full-time in IT security consulting since 2017. My focus is on Windows, Active Directory and Entra ID security, as well as the security of internal systems.

You can find my full CV on my LinkedIn page.

Certifications

OSCP CISSP GCFA GWAPT

  • OSCP — Offensive Security Certified Professional
  • CISSP — Certified Information Systems Security Professional
  • GCFA — GIAC Certified Forensic Analyst
  • GWAPT — GIAC Web Application Penetration Tester

Talks at conferences

Here are some talks that I have presented at conferences.

Troopers 2023: The Power of Coercion Techniques in Windows Environments

IT-SECX 2021: Utilman is back (German)

Hacktivity 2023: The Power of Coercion Techniques in Windows Environments

Another (later) version of the talk I did at Troopers. It is a little bit shorter, but being the third time I’ve done the talk, it might be better. I will let you decide.

The name VidraSec

“Sec” stands for security. “Vidra” is the Slavic word for otter 🦦, chosen because it sounds nice and was still available.

The otter connection to security: in medieval Austria, the Catholic Church banned meat during fasting but allowed fish. People classified otters as fish to get around the restriction, making otters part of one of history’s earliest documented life hacks. Unfortunately, this wasn’t great for the otters (or their beaver 🦫 friends), but they are protected now.