https://redspectrum.ca/Recent content on Red SpectrumHugoen-caMon, 25 May 2026 00:00:00 +0000https://redspectrum.ca/blog/hello-red-spectrum/Mon, 25 May 2026 00:00:00 +0000https://redspectrum.ca/blog/hello-red-spectrum/<p>This is the first post on the Red Spectrum blog. Until now most of my long-form writing has lived on LinkedIn — those pieces are still linked from the <a href="https://redspectrum.ca/articles/">articles</a> section — but a few topics need more room than a LinkedIn post comfortably allows.</p> <p>What you can expect here:</p> <ul> <li><strong>Tradecraft notes</strong> from red team engagements, written generically enough to share publicly</li> <li><strong>Active Directory</strong> — attack paths, ACL chains, identity-fabric exposure, and the detection gaps that come with them</li> <li><strong>TSCM field notes</strong> — what RF spectrum sweeps actually find in 2026, and where physical-layer threats are heading</li> <li><strong>Tooling write-ups</strong> for projects released under <a href="https://github.com/0x48756773">github.com/0x48756773</a></li> </ul> <p>Posts will be infrequent and technical. If that&rsquo;s your wavelength, the <a href="https://redspectrum.ca/index.xml">RSS feed</a> is the easiest way to follow along.</p>https://redspectrum.ca/blog/dont-let-dropshippers-play-patriotism-card/Tue, 24 Jun 2025 00:00:00 +0000https://redspectrum.ca/blog/dont-let-dropshippers-play-patriotism-card/<p>Lately I&rsquo;ve been seeing more and more ads from so-called &ldquo;small businesses&rdquo; claiming they&rsquo;re shutting down due to tariffs, trade wars, or pandemic-related struggles. They tug at your heartstrings, hoping your patriotism — and your wallet — will kick in.</p> <p>But here&rsquo;s the truth: many of these ads are from overseas dropshipping operations disguised as local mom-and-pop shops.</p> <p>Take &ldquo;Marlene&rsquo;s Pet Shop&rdquo; as an example. Their ad claims they&rsquo;re a small business based in Montreal, closing down due to rising costs.</p>https://redspectrum.ca/blog/curiosity-unveils-oversight-radio-contest/Wed, 22 Jan 2025 00:00:00 +0000https://redspectrum.ca/blog/curiosity-unveils-oversight-radio-contest/<p>Just wanted to share a really interesting disclosure I made to a media organization in Canada a few weeks ago.</p> <p>This media organization was running a radio contest where they would announce keywords over the radio at set times. Every few hours, you could visit a number of websites across Canada to submit your name along with the keyword, in an effort to win a prize of $1,000 weekly, with an overall grand prize of $100,000. With the upcoming release of the Nvidia RTX 5080, I needed all the money I could get — so I figured I would enter.</p>https://redspectrum.ca/blog/weakest-link-behind-keyboard/Wed, 20 Jan 2016 00:00:00 +0000https://redspectrum.ca/blog/weakest-link-behind-keyboard/<p><em>Note: this story does not represent my role in my current company, but a gaming community that I run in my spare time.</em></p> <p>Let me tell you the story about a server. I, like many of you, host servers for various activities, on various hosts. Each of these servers are secured to a standard that I would like to say is high, at least by comparison to other servers on the web.</p>https://redspectrum.ca/about/Mon, 01 Jan 0001 00:00:00 +0000https://redspectrum.ca/about/<p><strong>Johnathan Drozdowski</strong> is a Senior Red Team Specialist with <strong>12+ years of experience</strong> operating across government, defence, and enterprise environments — from Canadian Armed Forces networks and classified military infrastructure to large-scale financial sector AD estates.</p> <p>Red Spectrum exists because most security assessments answer the wrong question. A list of findings tells you where you&rsquo;re vulnerable. A well-executed red team engagement tells you whether your people, processes, and controls would actually stop a determined attacker — and what they&rsquo;d miss if they didn&rsquo;t.</p>https://redspectrum.ca/contact/Mon, 01 Jan 0001 00:00:00 +0000https://redspectrum.ca/contact/<p>For pentest, red team, purple team, and TSCM inquiries, use the form below. Briefly describe <strong>what you&rsquo;re trying to accomplish</strong> (e.g. &ldquo;validate our detection coverage&rdquo;, &ldquo;pre-acquisition assessment&rdquo;, &ldquo;executive office sweep&rdquo;) and Red Spectrum will follow up within one business day.</p> <p>For sensitive disclosures, encrypted email is available — request a PGP key in your initial message and we&rsquo;ll move the conversation off this channel.</p>https://redspectrum.ca/services/Mon, 01 Jan 0001 00:00:00 +0000https://redspectrum.ca/services/<p>Red Spectrum engagements are scoped around a single question: <strong>what would a capable adversary actually do to your organization, and would you catch them?</strong> Everything below is offered as a standalone engagement or as part of a longer-running program.</p> <hr> <h2 id="red-team-operations">Red Team Operations</h2> <p>Multi-stage adversary emulation against your production environment. Engagements are mapped to <strong>MITRE ATT&amp;CK</strong> and tuned to specific threat actors relevant to your sector.</p> <ul> <li>Custom command-and-control infrastructure</li> <li>Initial access through phishing, exposed services, or assumed-breach scenarios</li> <li>Active Directory traversal, privilege escalation, and lateral movement</li> <li>Data identification and controlled exfiltration</li> <li>Detection-capability assessment alongside your SOC</li> </ul> <p><strong>Best for:</strong> mature security programs that have already passed traditional pentests and need to validate whether their detection and response actually works against a determined operator.</p>