Andrew Trexler

Andrew graduated from the University of Pittsburgh with a degree in Information Science where he focused on networking and security. He continued his education by obtaining the Offensive Security Certified Professional (OSCP) and the eLearnSecurity Junior Penetration Tester (eJPT) certifications. When not participating in capture the flag events, Andrew works as a pyrotechnic operator setting up and shooting firework shows in the Pittsburgh area.

the exploit blog logo
The Exploit: Penetration Testing Insights From The Frontlines

The Exploit articles written by Andrew Trexler

  • Cool Tools Series: Kerbrute
    , , ,

    Cool Tools Series: Kerbrute

     By Andrew Trexler Raxis Principal Penetration Tester Andrew Trexler walks through the many uses of Kerbrute from user enumeration to brute-forcing and password spraying. October 7, 2025
  • Dev's Fast Reporting of Phish Reduced Impact on Blockchain Malware Attacks
    ,

    Dev’s Fast Reporting of Phish Reduced Impact on Blockchain Malware Attacks

     By Andrew Trexler A recent successful phish allowed attackers to run malware targeting cryptocurrency transactions on various blockchains, but fast reporting limited the damage. September 11, 2025
  • How AI Makes Phishing Easy & What to Watch For
    , , ,

    How AI Makes Phishing Easy & What to Watch For

     By Andrew Trexler Principal Penetration Tester Andrew Trexler got curious how easy it might be to customize a phish to a specific website using AI. The answer? Very easy. May 6, 2025
  • AD Series: Using Evil-WinRM to Get NTDS Manually
    ,

    AD Series: Using Evil-WinRM to Get NTDS Manually in Penetration Tests

     By Andrew Trexler Principal Penetration Tester Andrew Trexler’s Active Directory series is back, showing how to use Evil-WinRM to copy NTDS.dit manually in penetration tests. March 11, 2025
  • Cool Tools Series: Vim
    ,

    Cool Tools Series: How Vim Powers Penetration Testing

     By Andrew Trexler Principal Penetration Tester, Andrew Trexler, dives into Vim, a powerful command line tool for text files, and shows useful commands for penetration testing. January 14, 2025
  • Cool Tools Series: Masscan
    ,

    Cool Tools Series: Masscan for Penetration Testing

     By Andrew Trexler Continuing our Cool Tools Series, Lead Penetration Tester Andrew Trexler shows how to use masscan for discovery scanning on large networks in penetration tests. December 3, 2024