About
I am a Sr. penetration tester, open source developer, and occasional bug bounty hunter. This
blog is used as a place to post random thoughts, write-ups, and share code I found useful
once upon a time.
Much of my job is spent performing offensive security engagements, which can include everything from OSINT investigations, Wireless penetration tests, to Physical penetration tests. I don't want to say "specialize", but I am most interested in web application and internal (assumed breach) style penetration tests. As you may be able to tell by the topics of my research, tools, and other public content.
My current projects can be found on GitHub and I am active (I use this term loosely) on Bugcrowd & HackerOne.
Much of my job is spent performing offensive security engagements, which can include everything from OSINT investigations, Wireless penetration tests, to Physical penetration tests. I don't want to say "specialize", but I am most interested in web application and internal (assumed breach) style penetration tests. As you may be able to tell by the topics of my research, tools, and other public content.
My current projects can be found on GitHub and I am active (I use this term loosely) on Bugcrowd & HackerOne.