โโโโโโโ โโโ โโโโโโ โโโโโโโ โโโโโโโโโโโ โโโ
โโโโโโโโโโโโโโโโโโโโ โโโโโโโโ โโโโโโโโโโโโโ โโโ
โโโโโโโโโ โโโโโโ โโโโโโโโโโโโโโโโโโโโโโโโโโโโ โโโ
โโโโโโโโโ โโโโโโ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โโโโโโโโโโโโโ โโโ โโโโโโ โโโ โโโโโโโโโ โโโโโโ
โโโโโโโ โโโ โโโ โโโโโโ โโโโโโโโโ โโโโโ
[ PENETRATION TESTER & SECURITY RESEARCHER ]
root@0x4min:~#
|
[ABOUT]
Offensive security researcher with 2+ years of hands-on experience in web application pentesting, network security, and bug bounty hunting. I find and report vulnerabilities before bad actors do โ across web apps, APIs, mobile applications, and internal networks.
I write technical research and CTF writeups on Medium, build custom security tooling in Go and Python, and continuously sharpen skills on HackTheBox. My work spans everything from XSS to Active Directory exploitation to Android app security research.
[SPECIALIZATIONS]
๐ฏ Web Application Security โ SQL injection, XSS/BXSS, SSRF, XXE, deserialization, JWT attacks, OAuth flaws, IDOR
๐ฑ Mobile Security โ Android APK analysis, SSL pinning bypass, root/emulator detection bypass, Frida instrumentation
๐ Network Penetration Testing โ Internal/external assessments, Active Directory exploitation, Kerberoasting, lateral movement
๐ด Red Team Operations โ APT simulation, phishing campaigns, C2 infrastructure, social engineering
๐ฐ Bug Bounty Hunting โ Responsible disclosure, HackerOne & Bugcrowd platforms, critical vulnerability research
๐ก OSINT & Reconnaissance โ Subdomain enumeration, passive recon, target profiling, attack surface mapping
๐ CTF Competitions โ Web exploitation, pwn, reverse engineering, forensics challenges
๐ฌ Tool Development โ Custom exploit tooling in Python and Go, automation frameworks, OOB/BXSS infrastructure
[CONTACT]
Want to collaborate on security research, discuss a vulnerability, or explore working together?
โ About & Contact