I am ...
_Offsec cybermage invoking sanctioned Chaos upon web apps and APIs, reducing them to ruin and blessing developers with the inspiration to rebuild stronger. _
-
📖 Author of "Enumerating Esoteric Attack Surfaces", a comprehensive reconnaissance tome focused on uncovering buried and heretical attack vectors through methodical, Inquisitorial-grade enumeration.
https://www.amazon.com/Enumerating-Esoteric-Attack-Surfaces-Penetration-ebook/dp/B0CWDPHHMR -
🔭 I’m currently working on private criminal investigation cases for the Orange County Sherrif's Department, extermination service on various bug bounty program(s) and penetration tests for various clients (Web and Android apps).
-
👯 I’m looking to collaborate on bounty programs.
-
🌱 I’m currently learning AI/ML hacking, red team evasion (Windows 11, EDRs), Godot and Golang.
- OSCP
- eWPT
- eCPPTv2 (eLearnSecurity Certified Professional Penetration Tester)
- CompTIA Pentest+
- Python Institute PCEP
- HackerOne :: 99th percentile
- TryHackMe :: USA Top 10 and Global Top 50 (2021-2022)
- CVE-2023-3757 (critical SQLI in Rail Pass Management System Project in PHP" v 1.0)
- CVE-2023-5303 (Multiple Stored-XSS Discovered in Online Banquet Booking System v1.0)
- CVE-2023-5304 (Stored XSS via book-services.php)
- CVE-2023-5305 (Stored XSS via mail.php)
- CVE-2023-6074 (CVSS 9.8 SQLI in PHPGuruKui Restaurant Table Booking System 1.0)
- CVE-2023-6075 (Stored XSS via Reservation Request Handler)
- CVE-2023-6076 (CVSS 7.5 Information disclosure via booking-details.php)
- CVE-2024-11484 (Code4Berry Decoration Management System 1.0 User Image update_image.php productimage1 access control)
- CVE-2024-11485 (Code4Berry Decoration Management System 1.0 User userregister.php permission)
- CVE-2024-11486 (Code4Berry Decoration Management System 1.0 User Permission user_permission.php)
- CVE-2024-11487 (Code4Berry Decoration Management System 1.0 Between Dates Reports btndates_report.php fromdate/todate sql injection)
- 📫 How to reach me: ...