I am an experienced developer with a comprehensive background, currently focusing on transitioning into Offensive Security.
"I believe that hands-on experience building systems from end-to-end is the best foundation for understanding and finding their inherent weaknesses."
- Development Background: Former Founder & Full Stack Developer of Fanz and TikGrow.
- Key Strength: Developed and successfully launched multiple applications on the Google Play Store, providing practical, deep knowledge of the Mobile Attack Surface (Android/React Native).
- Current Focus: Developing expertise in Web and Mobile Penetration Testing, with a deep interest in logic flaws and concurrency vulnerabilities.
- Methodology: Grey-box testing & Source code review.
- Reverse Engineering: Actively practicing techniques (Static/Dynamic Analysis) for Mobile apps and strengthening skills in Red Teaming.
- AI Application in Pentesting: Currently integrating AI to enhance vulnerability discovery automation. Specifically, exploring techniques for predicting logic flaws and optimizing fuzzing efficiency based on traffic analysis.
Due to the sensitive nature of some projects, certain tools developed for internal auditing and research remain private.
Security Research Project: Custom Race Condition Fuzzer
A high-performance, multi-threaded exploitation tool built to detect and exploit complex Race Conditions in high-concurrency transactional APIs.
- Technical Capability: Auditing and bypassing common database locks and transaction isolation levels in scale environments.
- Tech: Written primarily in Go.
