Author Image

Hi! I am Pete

Pete Cipolone

Pentester at UltraViolet Cyber

I am a pentester with eight years of cybersecurity experience. I help clients become safer by discovering flaws in their products/infrastructure and documenting the impact of those flaws. My speciality is the ability to translate technical language into business language. My passions lie in learning, building, doing, and improving.

Offensive Security Certified Professional
CISSP
SSCP
ARTE
Humility
Hard Working

Skills

Experiences

1
UltraViolet Cyber

January 2023 - Present

Remote

UltraViolet is a cybersecurity company that thrives at the intersection of red team and blue team skills.

Penetration Tester

April 2024 - Present

Responsibilities:
  • Lead tester on 14 penetration tests and assistant on another six tests in the areas of external, web application, internal, cloud, and social.
  • Found over 98 vulnerabilities with 17 being categorized as critical or high.
  • Communicated closely with clients from the kickoff call to the final out brief.
  • Developed or contributed to 20+ internal tools in the areas of phishing, payload testing, cloud, and external.
SOC Analyst and Shift Lead

January 2023 - April 2024

Responsibilities:
  • Monitored multiple client environments using CrowdStrike Falcon, IBM QRadar SOAR, Elastic, Extrahop, and a proprietary system mapped to the MITRE ATT&CK framework.
  • Writer of the weekly security bulletin.
SAIC

June 2021 - March 2022

Remote

A premier Fortune 500® technology integrator focused on advancing the power of technology and innovation to serve and protect our world.

SOC Analyst

June 2021 - March 2022

Responsibilities:
  • Event monitoring using Splunk Enterprise Security.
  • Assisted tier II in gathering data for threat intelligence reports on relevant cyber threat groups.
  • Created multiple Excel and PowerShell scripts to help research IP addresses and Windows event codes.
2
3
Holt Logistics

June 2017 - February 2021

Gloucester City, NJ

A logistics company with almost a century of dedicated service, reliability, accountability, and innovation.

Cybersecurity Analyst and Programmer

June 2017 - February 2021

Responsibilities:
  • Responsible for Email security using Fortinet, Barracuda, and Microsoft ATP.
  • Consistently resolving IT issues for approximately 300 end users.
  • Wrote over 70 software programs and scripts resulting in the savings of over 200 hours a year.

Education

Rowan University
2013-2017
B.Sc. Computer Science
GPA: 3.5 out of 4

Projects

Python C2 Server
Python C2 Server
Owner January 2024 - February 2024

Created a Python C2 Server with implants for both Windows and Linux.

professional python coding
Star
Cybrary - SSCP Video Course
Cybrary - SSCP Video Course
Course Creator October 2018

An exam prep course for the (ISC)2 SSCP certification.

professional course
Details
Cybrary - Network Security Course
Course Creator September 2019 - October 2019

A course on Network Security.

professional course
Details
WarRig
builder December 2024 - Present

WarRig is a tool used for automating payload generation. Runs on Golang and works with Terraform and Ansible to setup the environment. This is currently a work in progress.

professional coding
CORGI
builder May 2025 - Present

CORGI stands for “CLoud Operator’s Recon & Gap Identifier”. This is a tool which can extract data from a ScoutSuite and AWS acounts to help speed up security assessments. This is currently a work in progress.

professional coding
Mutiny
builder September 2024 - Present

A wrapper for pentesting tools to help speed up/automate external assessments. Uses Channels/Workers for local use and Axiom (soon to be Argo flows) for large scopes.

professional coding

Featured Posts

Hero Image
Markdown Samples

This is a sample post intended to test the followings: A different post author. Table of contents. Markdown content rendering. Math rendering. Emoji rendering. Markdown Syntax Rendering Headings The following HTML <h1>—<h6> elements represent six levels of section headings. <h1> is the highest section level while <h6> is the lowest. H1 H2 H3 H4 H5 H6 Paragraph Xerum, quo qui aut unt expliquam qui dolut labo. Aque venitatiusda cum, voluptionse latur sitiae dolessi aut parist aut dollo enim qui voluptate ma dolestendit peritin re plis aut quas inctum laceat est volestemque commosa as cus endigna tectur, offic to cor sequas etum rerum idem sintibus eiur? Quianimin porecus evelectur, cum que nis nust voloribus ratem aut omnimi, sitatur? Quiatem. Nam, omnis sum am facea corem alique molestrunt et eos evelece arcillit ut aut eos eos nus, sin conecerem erum fuga. Ri oditatquam, ad quibus unda veliamenimin cusam et facea ipsamus es exerum sitate dolores editium rerore eost, temped molorro ratiae volorro te reribus dolorer sperchicium faceata tiustia prat.

    Monday, June 8, 2020 | 3 minutes Read
    Hero Image
    Shortcodes Samples

    This is a sample post intended to test the followings: Default hero image. Different shortcodes. Alert The following alerts are available in this theme. This is sample alert with type="success". This is sample alert with type="danger". This is sample alert with type="warning". This is sample alert with type="info". This is sample alert with type="dark". This is sample alert with type="primary". This is sample alert with type="secondary". Image A sample image without any attribute. A sample image with height and width attributes. A center aligned image with height and width attributes. A image with float attribute. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Cras egestas lectus sed leo ultricies ultricies. Praesent tellus risus, eleifend vel efficitur ac, venenatis sit amet sem. Ut ut egestas erat. Fusce ut leo turpis. Morbi consectetur sed lacus vitae vehicula. Cras gravida turpis id eleifend volutpat. Suspendisse nec ipsum eu erat finibus dictum. Morbi volutpat nulla purus, vel maximus ex molestie id. Nullam posuere est urna, at fringilla eros venenatis quis.

      Monday, June 8, 2020 | 3 minutes Read

      Recent Posts

      Hero Image
      Cackalacky Con

      This past weekend, I had the opportunity to speak at Cackalacky Con in NC about phishing! It was the perfect opportunity to see some friends and practice my public speaking! This little blog post is about my experience. The Talk: The talk was a 25 minute lightening talk with two LIVE demos! For context, I run most of the phishing engagements at my place of employment so I’ve seen/learned/discovered some things and I wanted to share them with the community. The hardest part was keeping the talk to 25 minutes! Due to the essence of time, I focused on

      Thursday, May 22, 2025 | 2 minutes Read
      Hero Image
      2025 Reading List

      A curated list of great books I have read this year. The Recruiter: A Rick Carter Novel by Gregg Podolski The Subtle Art of Not Giving a F*ck by Mark Manson 33 Days to Eucharistic Glory by Matthew Kelly Beasts of Extraordinary Circumstance by Ruth Emmie Lang Your Inner Fish by Neil Shubin Bullshit Jobs by David Graeber Say Nothing: A Story of Murder and Memory in Northern Ireland by Patrick Radden Keefe The Fish that Ate the Whale: The Life and Times of America’s Banana King by Richard Cohen Ten Lessons for a Post-Pandemic World by Fareed Zakaria

        Tuesday, January 7, 2025 | 1 minute Read
        Hero Image
        2024 Reading List

        A curated list of great books I have read this year. Deep Work by Cal Newport The King of Attolia by Megan Whalen Turner A Conspiracy of Kings by Megan Whalen Turner Jesus and the Jewish Roots of the Eucharist by Brant Pitre Thick as Thieves by Megan Whalen Turner Return of the Thief by Megan Whalen Turner The Wisdom of the Bullfrog by William H. McRaven How to Hack like a Legend by Sparc Flow A Darker Shade of Magic by VE Schwab A Gathering of Shadows by VE Schwab A Conjuring of Light by VE Schwab 5 Things with Father Bill by William Byrne Mindset: The New Psychology of Success by Carol Dweck Sickening by John Abramson George Washington’s Secret Six by Brian Kilmeade and Don Yaeger The Premonition: A Pandemic Story by Michael Lewis Trader by Charles de Lint Meddling Kids by Edgar Cantero Children of Blood and Bone by Tomi Adeyemi Boneshaker by Cherie Priest

          Sunday, January 7, 2024 | 1 minute Read

          Accomplishments

          BSides Philadelphia Speaker
          BSides December 2024

          Gave a talk on phishing and some of the advanced techniques I use at work. Aspects included SMTP Open Relays, Reverse Proxying, and the Bob Ross technique. Video will be uploaded to Youtube sometime soon.

          View Certificate
          CVE-2024-50658, CVE-2024-50659, and CVE-2024-50660
          Mitre Septmeber 2024

          Discovered multiple CVEs in AdPortal 3.0.39 by iPublish Media Solutions. Other versions may be affected. The vendor has been notified, but it is unclear if they will fix the issues.

          View Certificate
          Appalachian Trail Thruhiker
          Appalachian Trail March 2022 - September 2022

          Took a six month break from work to hike 2194.3 miles of the Appalachian National Scenic Trail. I learned a lot about myself and my capabilities. I also learned invaluable softskills which help me everyday at work.

          View Certificate
          Cackalacky Con Speaker
          Cackalacky Con May 2025

          Gave a talk on phishing and some of the advanced techniques I use at work. Aspects included reverse proxying, bot detection, SMTP relays, and Content Filtering Bypasses.

          View Certificate