Offensive Security Specialist

My journey in technology began with full stack web development, where I built robust applications using the JavaScript stack—React, Node.js, Express, and modern frontend frameworks. This foundation gave me deep insight into how web applications are built, how they function, and where their vulnerabilities might lie.

I have a strong programming background and a genuine love for Go and Python. These languages have become essential tools in my security work, allowing me to develop custom security testing tools, automate vulnerability assessments, and create proof-of-concept exploits that demonstrate real-world security risks.

While I appreciate the art of building applications, my true passion lies in offensive security and securing web applications. The challenge of thinking like an attacker, identifying vulnerabilities before they're exploited, and systematically breaking down security defenses is what drives my work.

Today, I specialize in web application penetration testing, conducting comprehensive security assessments through manual testing, custom tool development, and deep understanding of web application architectures. My development background gives me a unique perspective—I understand both how applications are built and how they can be broken.

I focus extensively on the OWASP Top 10 vulnerabilities, systematically testing for injection flaws, broken authentication, sensitive data exposure, and other critical security weaknesses that pose real threats to web applications. This methodical approach ensures comprehensive coverage of the most common and dangerous vulnerabilities affecting modern web applications.