homepage
Open menu
Contact Sales

Chris Dale

An IT enthusiast who had childhood dreams of becoming a hacker, Chris Dale’s path to a career in information security was set after his older brother hacked him. Today Chris uses his hacker skills to demonstrate risk via Offensive Services and Incident Response.

Chris began his career in 2009 working for a large Norwegian ISP, doing development and IT operations. “I really learned about how all things interconnect and work,” he says. Since then he’s worked for multiple companies in important roles, and his last job was the head of cyber security at a 60 man Cyber Security consulting firm. Here he managed several teams, including pen testing and incident response. In 2020, Chris founded his own company, River Security, specializing in offensive services, attack surface management and cyber consulting.

A certified instructor for SANS and a SANS Analyst, Chris teaches SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling and SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses, and is co-author of SEC550: Cyber Deception - Attack Detection, Disruption and Active Defense.

More About Chris
Specialties
Headshot of Chris Dale

Profile

A SANS instructor since 2012, Chris brings significant security expertise along with a background in system development, IT operations, and security management. “I enjoy seeing students smile and enjoy themselves through a hardcore week of training,” he says, noting that his most successful students pay attention, enjoy themselves, and capture notes and ideas for use when they get back to work.

Chris has a bachelor’s degree in informatics, with specialization in programming, from the Norwegian University of Science and Technology. He is a SANS Analyst and holds GCIH, GDAT, GPEN, GMOB, and GSLC professional certifications. Chris is also a faculty member of the SANS Technology Institute, an NSA Center of Academic Excellence in Cyber Defense and multiple winner of the National Cyber League competition.

Chris regularly presents at conferences and workshops and participates in panel debates. He is frequently invited to participate in government-related working groups to recommend and improve the Norwegian private and public sectors. Chris stays active in the virtual infosec community by posting tutorials and information on his YouTube channel and via LinkedIn.

When he’s not working, you’ll find Chris trekking and biking, spending time with his kids, and just generally “nerding out.”

ADDITIONAL CONTRIBUTIONS BY CHRIS DALE:

WEBCASTS

Paul's Security Weekly #569

Everything you need to know before trusting a zero-trust provider, July 2020

2020 Asset Management Trends: As IT Complexity Increases, Visibility Plummets, June 2020

SANS @MIC Talk - Introduction to Docker for security work, May 2020

SANS @MIC Talk - Information Security misconceptions 2020, May 2020

Why it’s easy being a hacker, February 2020

Red, Blue and Purple Teams: Combining Your Security Capabilities for the Best Outcome, October 2019

Effective Threat Hunting, July 2019

Tips and Tricks for Customers and Pen Testers on How to Get Higher Value Pen Tests, December 2018

A Practical Introduction into How to Exploit Blind Vulnerabilities, December 2018

Passwords and Authentication - Get Up to Speed on Attacks and Defenses, November 2018

Web Hacking with Burp Suite - Deep Dive into Burp Suite's Functionality for Pen Testers, October 2018


MORE

Chris' personal website

Chris' Youtube channel


Chris's Contributions

ICS_-_Blog_-_Top_3_Cybersecurity_Predictions_for_2024_in_EMEA_340_x_340.jpg
Blog
Top 3 Cybersecurity Predictions for 2024 in EMEA
Get MFA, network segmentation, immutable backups, patch management on external attack surface, the principle of least privileges done NOW.
Chris Dale
Principal Instructor
read more
joshua-earle-X_roZ7toBJY-unsplash.jpg
Blog
Digital Footprint - The first step in most offensive services
Organizations change continuously and it’s harder than ever to know what the current status quo looks like.
Chris Dale
Principal Instructor
read more
Blog
The Secrets in URL Shortening Services
Authors: Chris Dale (@ChrisADale) and Vegar Linge Haaland (@vegarlh) created this post to bring awareness to the dangers of using URL shortening services. They both work at Netsecurity, a company which serves a multitude of customers, internationally, with services within networking, security...
Chris Dale
Principal Instructor
read more
Blog
Azure 0day Cross-Site Scripting with Sandbox Escape
[Editor's Note: Chris Dale is an amazing gentleman. He finds Cross-Site Scripting (XSS) flaws in the most interesting and wonderful places. In this article, Chris shares some insights into his methods and how he applied them in finding a zero-day XSS flaw associated with Microsoft Asure. Good...
Chris Dale
Principal Instructor
read more
Blog
Finding Zero-Day XSS Vulns via Doc Metadata
XSS Here, XSS There, XSS Everywhere!Today Cross-Site Scripting (XSS) is very widespread. While it is not a newly discovered attack vector, we still see it all the time in the wild. Do you remember back in the days, when you would click on a website's guestbook, and suddenly you would have tons of...
Chris Dale
Principal Instructor
read more