Profile
About
Security researcher focused on web application security, bug bounty programs, and penetration testing. I document findings here — both to give back to the community and to keep a personal record of techniques that work.
Focus Areas
- Web application penetration testing
- Bug bounty hunting (public & private programs)
- Reconnaissance & OSINT
- Authentication & authorization vulnerabilities
- API security testing
Certifications & Programs
- HackerOne — active participant
- Bugcrowd — active participant
- Private programs via invitation
Writing Approach
Every post here is a real finding — sanitized where necessary for responsible disclosure timelines. I try to include full reproduction steps, proof-of-concept code, and remediation guidance where possible.
Contact
Reach out via any of the social links below. For responsible disclosure, use the HackerOne or Bugcrowd platform — do not email vulnerability details directly.