I am a passionate Cyber Security Specialist with a keen interest in developing innovative automation tools for penetration testing and hacking. With extensive experience in various aspects of cybersecurity, I aim to contribute to the community by creating tools that simplify and enhance the hacking process.
Programming Languages:
Technologies:
Web Development:
Penetration Testing Tools:
Developing custom scripts for IoT device penetration testing, focusing on identifying vulnerabilities and securing IoT networks.
Creating a browser extension to assist penetration testers with automating common tasks, such as cookie management, header manipulation, and data extraction.
Building an automated exploitation tool that leverages the power of ChatGPT to identify and exploit vulnerabilities in web applications. This tool aims to streamline the exploitation process, making it faster and more efficient.
- Skills Required: Enumeration, Docker Knowledge, OWASP Top 10
- Summary: Exploited a custom web application for gaining access to sensitive information and achieved privilege escalation through Docker vulnerabilities.
- Skills Required: Web Enumeration, Go SSTI, Source Code Analysis, AWS S3 Buckets
- Summary: Leveraged Server-Side Template Injection (SSTI) in a Go application to gain initial access and escalated privileges using AWS S3 misconfigurations.
- Skills Required: Enumeration, Source code review, Vhost enumeration
- Summary: Discovered and exploited a Server-Side Request Forgery (SSRF) vulnerability to access internal services and obtained root privileges through a misconfigured Python script.
Feel free to reach out to me if you're interested in my projects or if you'd like to collaborate on cybersecurity and automation tool development.
Thank you for visiting my profile! Have a great day! π