Rob Ragan

Offensive security researcher and AI agent architect. Founder of Starlog.

offensive securityAI agentspenetration testingred teamingapplication security

1661 articles

Rob Ragan is an offensive security researcher and AI agent architect who has spent two decades breaking into systems and building tools to automate the process.

// ARTICLES BY ROB RAGAN

Automation

Squirtle: The 2008 NTLM Attack Toolkit That Exposed Browser Authentication's Fatal Flaw

By Rob Ragan ★ 17 Unknown May 14, 2026

Developer Tools

Building a Unified Passive DNS Client: How passivedns-client Abstracts Six Intelligence Providers

By Rob Ragan ★ 201 Unknown May 14, 2026

Developer Tools

Inside TREsPASS.js: A Research-Grade JavaScript Library for Modeling Socio-Physical Security Threats

By Rob Ragan ★ 4 Unknown May 14, 2026

Rob Ragan

// ARTICLES BY ROB RAGAN

Squirtle: The 2008 NTLM Attack Toolkit That Exposed Browser Authentication's Fatal Flaw

Building a Unified Passive DNS Client: How passivedns-client Abstracts Six Intelligence Providers

jhaddix/domain: The Reconnaissance Automation Script That Time Left Behind

Medved: When DNS Zone Transfers Were the Low-Hanging Fruit of Pentesting

Building a DNS Server for Bit Manipulation: Inside bf-dns and Project Bitfl1p

Defending Against Cosmic Rays: How bf-lookup Detects Bit-Flip Domain Hijacking

APTnotes: The Underground Library Every Security Researcher Should Bookmark

Tplmap: The Automated SSTI Hunter That Powers Penetration Tests

Inside google/rowhammer-test: How to Corrupt Memory by Reading It

Rowhammer.js: Breaking Hardware Security Guarantees from Your Browser

Attack Navigator Map: Visualizing Security Threats in the TRESPASS Ecosystem

Inside TREsPASS.js: A Research-Grade JavaScript Library for Modeling Socio-Physical Security Threats