Blog  |  Walkthroughs  |  Talks  |  About   


I am a Sr. penetration tester, open source developer, and occasional bug bounty hunter. This blog is used as a place to post random thoughts, write-ups, and share code I found useful once upon a time.

Much of my job is spent performing offensive security engagements, which can include everything from OSINT investigations, Wireless penetration tests, to Physical penetration tests. I don't want to say "specialize", but I am most interested in web application and internal (assumed breach) style penetration tests. As you may be able to tell by the topics of my research, tools, and other public content.

My current projects can be found on GitHub and I am active (I use this term loosely) on Bugcrowd & HackerOne.


Want to talk, collaborate, or have a job? Feel free to reach out on Twitter or email!