Senior Cyber Security Consultant | Red & Purple Team Specialist | Open-Source Contributor
An accomplished cybersecurity professional with over 6 years of expertise in red and purple team operations, specializing in offensive security strategies and advanced threat emulation. With a strong focus on adversary simulation, I excel in leveraging cutting-edge tools and methodologies to identify vulnerabilities, bypass security controls, and strengthen enterprise defenses. Passionate about sharing knowledge, I contribute to the community through innovative tools, in-depth research, and educational resources.
π Let's connect:
- Red & Purple Teaming:
- Web & API Security
- Source Code Review
- Thick Client Security
- Windows Hardening
- Automation at Scale
-
Tool Development:
- Task-Ninja - The Multi Tasks automation framework to automate scale things.
- MSSQL-Attacker - Exploitation tool for MSSQL vulnerabilities.
- ProxyJacker - A red team tool to create Proxy DLL for sideloading.
-
Publications:
- Articles in Pentest Magazine: "Burp Suite Mastery" & "DLL Hijacking Exploitation."
- Free Course Material for the cybersecurity community.
-
Recognitions:
- Multiple CVEs:
| Project Name | Description | Link |
|---|---|---|
| Task-Ninja | Task Automation Framework | View Project |
| MSSQL-Attacker | Exploit tool for MSSQL Vulnerabilities | View Project |
| ProxyJacker | Proxy DLL Hijacking Tool | View Project |
- OSEP: Offensive Security Experienced Penetration Tester (2022).
- OSWE: Offensive Security Web Expert (2021).
- OSCP: Offensive Security Certified Professional (2020).
Thank you for visiting my GitHub profile! Feel free to explore my repositories and get in touch for collaboration or cybersecurity consultations.