Penetration Tester | CyberSecurity Researcher | Educator
MSc CompSci & Cyber | OSCP | CSTM
I specialize in identifying vulnerabilities before the bad guys do. With a background in network security and a passion for social engineering, I help organizations harden their defenses through rigorous testing and clear, actionable reporting.
Advanced Active Directory exploitation, BloodHound for path analysis, and pivoting with Cobalt Strike or Metasploit.
Full-stack auditing using Burp Suite Professional. Specialized in IDOR, JWT bypasses, and API security (OWASP Top 10).
Lead assessor for Cyber Essentials & Plus. Vulnerability management via Nessus/OpenVAS and gap analysis for ISO 27001.
Security auditing for AWS/Azure environments. Configuring secure CI/CD pipelines and container hardening (Docker/K8s).
Deep-web reconnaissance and employee profiling for targeted Phishing/Vishing simulations (CSTM standard).
Applied cryptography, machine learning in IDS, and formal security verification methods.
OWASP Top 10, Burp Suite, SQLi, XSS, and API security auditing.
Nmap, Metasploit, Wireshark, and pivoting through Active Directory environments.
Automating exploits with Python, Bash, and Go.