Skip to content

lawbyte/lawbyte

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
README.md
README.md
 
 

Repository files navigation

Azka Ainul Ma’arij

Offensive Security Engineer | Senior Security Consultant | Mobile Security Specialist

Security with Vantage Point | CTF with r3kapig, SKSD, PETIR

🚀 About Me

I am an Offensive Security Consultant specializing in advanced penetration testing across:

  • 🌐 Web Applications
  • 📱 Mobile (Android & iOS)
  • 🔌 APIs (REST & GraphQL)
  • 🏦 Financial Infrastructure
  • 🏭 SCADA / OT Environments
  • 🧠 Active Directory & Red Teaming

I operate at the intersection of real-world adversarial simulation, exploit development, and deep technical research.

🏢 Current Role

Senior Security Consultant — Vantage Point Security

At Vantage Point Security, I conduct enterprise-grade offensive security assessments for high-profile organizations, particularly within the financial sector.

My work includes:

  • Advanced web, API, and mobile penetration testing
  • Chained exploitation & realistic adversary simulation
  • Active Directory & infrastructure compromise scenarios
  • Custom exploit tooling & research-driven attack methodologies
  • Delivering executive-level risk reporting with technical depth

I operate at the intersection of offensive research and enterprise defense — helping organizations identify critical weaknesses before real attackers do.

🏆 Competitive Highlights

  • 🥇 1st Place — Standoff 16 (Real-World SCADA Cyber Battle) – r3kapig
  • 🏆 6th Place — Black Hat MEA 2025 – PETIR
  • 🏁 Finalist (12th) — Black Hat MEA 2024 – PETIR
  • 🌏 1st Place — Cyber Jawara International 2024
  • 🥇 2nd Place — CTF - GEMASTIK 2025 – PETIR
  • 💼 HTB Business CTF 2024 – 13/943 Companies (1st SEA, 3rd APAC) - Vantage Point

Competing at international scale, simulating real industrial systems and enterprise environments.

🛠️ Professional Focus

Offensive Security

  • Advanced Web & API Exploitation
  • Android Reverse Engineering & Dynamic Instrumentation
  • Mobile App Security (OWASP MASVS aligned)
  • SCADA / Industrial System Attack Simulation
  • Active Directory Abuse & Post-Exploitation

Research & Exploit Engineering

  • Binary Reverse Engineering
  • Custom Exploit Development
  • Cryptographic Analysis
  • Security Bypass Techniques

Tooling

Python Frida IDA Pro Ghidra Burp Suite Metasploit BloodHound Wireshark Docker, etc...

📱 Hack The Box — Mobile Challenge Author

I work part-time with Hack The Box designing realistic, production-grade mobile security challenges.

Focus areas:

  • Android exploitation
  • Reverse engineering
  • Bypass techniques
  • Real-world adversarial simulations
  • Advanced mobile attack chains

📜 Certifications

  • OSCP+
  • CREST CRT
  • CREST CPSA
  • Burp Suite Certified Practitioner
  • Certified eXpert Mobile Application Pentester (CXMAP)
  • Certified Android Penetration Tester (CAPT)

🌍 Community & Leadership

  • Organizer — Hack The Box Indonesia
  • International competitor — r3kapig
  • University team member — PETIR
  • Speaker & Trainer in offensive cybersecurity events

⚡ Current Interests

  • Advanced mobile exploitation research
  • SCADA / OT offensive simulations
  • CTF infrastructure & challenge development
  • Offensive automation tooling

🤝 Let's Connect

"Offense drives defense. Adversarial thinking builds resilient systems."

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors