Pro bono · no cost · case-by-case

Free incident response and security help for small organizations in trouble.

When you’ve been breached and can’t afford a big-name firm, you shouldn’t have to face it alone. I’m Taylor Banks, and I’ve worked in cybersecurity since 1997. I take on a small number of pro bono cases at a time. Real help, from a real person, at no cost.

Taken case-by-case. It’s free, and I’m not selling you anything.

Who this is for

This is for you if…

  • You’re a small business, nonprofit, school, or local org
  • You’re an individual facing a real security incident
  • You’ve been breached, hit by ransomware, phished, or locked out
  • You’re bracing for it and want a plan before something breaks
  • You really can’t afford to hire a firm right now

This probably isn’t the right fit if…

  • You’re a well-funded company that can hire an IR firm. Please do; it frees me up for those who can’t
  • You need 24/7 monitoring or ongoing managed security
  • You need legal or court forensics, or full compliance-audit delivery
  • The request involves accessing someone else’s systems, accounts, or data

Right now: reviewing new cases. I take on a handful at a time. If I’m full, I’ll tell you honestly.

How it works

A short, honest process, modeled on how a first responder triages a scene.

  1. 01

    Reach out

    Tell me the basics. No passwords, no sensitive details yet, just enough to understand the situation.

  2. 02

    I review it, personally

    Case-by-case. I’ll be honest fast about whether I’m the right help.

  3. 03

    We scope it in writing

    A short written agreement and your authorization before I touch anything. It protects both of us.

  4. 04

    I help

    Technical advisory and incident response, focused on getting you to stable ground.

Who’s behind this

I’m Taylor Banks. Some of you know me as dr.kaos. I’ve worked in information security since 1997: penetration tester, incident responder, acting Director of Information Assurance, ransomware negotiator, and advisor. I earned my CISSP back in 2002, when the cert was still new, and I founded Atlanta’s DEF CON group. I’ve trained more than 10,000 security professionals. I’ve spoken at DEF CON, ShmooCon, LayerOne, and B-Sides, and keynoted IT and security conferences internationally. My work’s been written up in Wired, CSO, and on NPR’s Marketplace. Short version: I’ve done this a long time, and I’m good at it.

I’m also a volunteer firefighter and EMT. When the pager goes off, you go. Same instinct here, just pointed at a network instead of a burning building.

  • Since1997
  • CISSPearned 2002
  • Trained10,000+ pros
  • StagesDEF CON · keynotes
  • PressWired · CSO · NPR
  • AlsoFirefighter / EMT

Questions people ask

Is this really free?

Yes. These cases are pro bono: I don’t charge, and I’m not upselling you. I do run a paid security practice separately (LTB Services and Cyber Summit Co), so if you can afford to bring someone in, say so and we can talk about a paid engagement instead. If you can’t, that’s exactly who this is for.

Why would you do this for free?

Because I’ve had the training and the luck, and too many small organizations get wiped out by attacks they could have survived with a little expert help. I keep a small number of pro bono cases going at a time.

Is this a scam?

Fair question. Free help after a breach is exactly what a scammer would offer, so a little caution is healthy. The difference: I’m a real, named person with a public track record going back to 1997 (DEF CON talks, press, taylorbanks.com), and I’ll never ask for your passwords or payment through this site.

What can you actually help with?

Ransomware, breaches, account compromise, phishing fallout, “we think we’ve been hacked,” and hardening so it doesn’t happen again. Technical incident response and advisory.

Is this legal advice?

No. I give technical security advice, not legal counsel. Breach-notification laws (state, HIPAA, GDPR) are a lawyer’s call, and I’ll tell you when you need one.

Do you guarantee you’ll fix it or recover my data?

No honest person can promise that. I’ll bring decades of experience and do everything I can, but I don’t make outcome guarantees.

What do you need from me to start?

A short written scope and your authorization before I access anything. It protects both of us.

Are you available right now?

I take cases case-by-case and I’m sometimes full. If you’re in an active emergency this second, use the emergency resources at the top of the page first.

Request help

Tell me the basics. Don’t include passwords or sensitive details. If it’s a real case, I’ll follow up with a secure intake form to get what’s needed.