For general information about me, or to learn about my journey to where I am now, please check out my About Me page. You can find me on LinkedIn, and my GitHub profile includes my open source work. Alternatively, you can email me at [email protected] for a more formal resume.

Stephen Rees-Carter

Stephen is a security consultant who specialises in security audits and pentests of Laravel apps, he is the creator of Laravel Security in Depth, where he teaches Laravel developers about security concepts and how to think like a hacker. His Laracon talks have been described as “terrifying magic tricks”, that show just how easy it is to hack into a vulnerable site and cause mayhem.

Certified Ethical Hacker
CompTIA Security+ Certified logo

Qualifications & Certifications

EC-Council Certified Ethical Hacker (v10, 2020)

CompTIA Security+ Certified (SY0-501, 2019)

Bachelor of Engineering in Software Engineering (University of Canberra, 2007)
Winner of the Engineers Australia ITEE Student Presentation Awards Night 2007

Talks & Presentations


New Zealand PHP Conference


Valorin Security

Friendly Hacker / Director
January 2022 → Present

(Company founded July 2022)


Technical Manager
March 2018 → Present


Defiant / Wordfence

Senior Developer
July 2018 → July 2021

Security Analyst
Jan 2017 → Jul 2018 (casual)

Award Force logo

Award Force

Technical Lead & Lead Security Analyst
August 2016 → July 2018

Senior Engineer
March 2015 → August 2016

Verve Ed — Casual Developer
February 2016 → May 2017

KiezelPay — Casual Developer
December 2015 → December 2016

InterSect Alliance International

Product Manager
June 2013 → February 2015

Software Engineer / Security Analyst
June 2012 → June 2013

Intersect Alliance

Uber Global / AussieHQ

Platform Engineer / Systems Developer
June 2008 → May 2012