• I'm the creator ofWeb3Sec.News &DigiBastion.com (Received Ethereum Grants),comprehensive platforms for Web3 security research and operational security/personal digital protection respectively.

• Synack Red Team Member conducting enterprise security assessments for Fortune 500 companies with200+ vulnerabilities reported across public and private programs.

• My expertise spanspenetration testing,vulnerability research,smart contract auditing, andincident response with2 published CVEs (CVE-2023-3067,CVE-2022-4722).

• To reach out DM me on Telegram ->https://t.me/Raiders0786

• Professional backgroundLinkedIn

• Fun factI believe security is like chess - every move matters, and I enjoy thinking several steps ahead!

I work as a professional security researcher focusing on web application security and enterprise penetration testing. As a part ofSynack Red Team member conducting security assessments for Fortune 500 companies.

Research highlights:

• 2 Published CVEs - Critical vulnerabilities in popular applications (30k+ GitHub stars)
• 200+ Vulnerabilities reported across public and private programs
• Major platform discoveries - Found critical flaws in GitBook, HackerRank, HashNode, and CodeChef

Monetary bounties:

• Multiple bounties fromE-bay (Account takeover, Business logic flaws)
• Dba.dk (SQL injection, Database compromise)
• Mobile.de (Stored XSS, Session hijacking)
• Tebex.io (Mass assignment, Admin escalation)
• Site.pro,Azena,Athento.com and others

Hall of fame recognition:

• Post.nl,mmc.nl,free.law,linkiti.com,powerassist.nl

CTF competitions:

• Winner atHaxxor CTF andEssence Hackathon

Specialized in authentication bypass, injection vulnerabilities (SQL, XSS, Template injection), business logic flaws, API security testing, and advanced attack techniques including sandbox escapes and SSRF.

📋View Complete Security Research Portfolio - Detailed technical writeups, CVE information, and professional credentials

PinnedLoading

1. web3-security-resourcesweb3-security-resourcesPublic

   The Web3 Security Resources Hub is a comprehensive collection of curated tools, guides, and best practices for securing decentralized systems and smart contracts in the blockchain space.

   369 59

2. ClickjackPocClickjackPocPublic

   Seamlessly Detect and Construct Exploit POCs for ClickJacking Vulnerability using this Automated tool

   Python 48 9

3. digibastiondigibastionPublic

   Don't Get Rekt. Protect Your Crypto from Phishing & Scams

   TypeScript 13 1

4. CrytpoTransferCrytpoTransferPublic

   Transfer Crypto's Today is a user-friendly platform designed to facilitate seamless cryptocurrency transfers while providing real-time visibility into blockchain transactions.

   JavaScript 4 2

5. oswaroswarPublic

   Forked fromCyVers-AI/oswar

   OSWAR is a comprehensive framework inspired by the MITRE ATT&CK framework, designed to identify, categorize, and mitigate Web3-related attacks and vulnerabilities