Offerings 
Offerings 
Red Team & Penetration Testing
- Web Application Pentesting: Manual and automated assessment of web apps and APIs targeting OWASP Top 10 — injection, broken access control, IDOR, SSRF, auth flaws, and business logic vulnerabilities.
- Network Penetration Testing: Host discovery, service enumeration, exploit selection, privilege escalation, and lateral movement reporting with full remediation guidance.
- Bug Bounty Research: Ongoing HackerOne experience across private and public programs. Structured vulnerability disclosure with severity scoring and reproduction steps.
Offensive Tooling & Scripting
- Recon Automation: Building Python and Bash pipelines that integrate Nmap, Sublist3r, Amass, Nuclei, and custom templates for continuous security assessment.
- Exploit Development: Custom exploits for CTF-style binary targets and real-world vulnerability research. Experience with buffer overflows, format strings, and ROP chains.
- CI/CD Security Integration: Embedding security tooling (Nuclei, DAST scanners) into GitHub Actions pipelines for automated continuous assessment.
Hardware & Embedded Security
- Bare-Metal Firmware Security: Cryptographic primitive implementation in C on ARM Cortex-M (AES-CBC-256, HMAC-SHA256, HKDF). Replay-resistance, nonce management, and secure key derivation for resource-constrained environments.
- HSM Protocol Design: Session-based key management, hierarchical permission systems, and flash-based secure storage design — applied in MITRE eCTF 2026 on the TI MSPM0L2228.
- IoT Attack Surface Assessment: Hardware interface analysis, firmware extraction, and embedded vulnerability research. Familiar with medical device security frameworks (IEC 62443, FDA premarket guidance).
Secure Full-Stack Development
- Security-First Application Development: Building production web and mobile applications with security baked in — auth systems, input validation, output encoding, and dependency auditing from the start.
- Secure API Design: REST and GraphQL APIs with RBAC, JWT implementation, rate limiting, and defense against BOLA, mass assignment, and broken auth.
- Application Hardening: Code review, dependency scanning, secrets detection, and vulnerability patching for existing applications.
Vulnerability Research & Consulting
- CVE Research: Full-stack vulnerability analysis from technical exploitation to structured reporting. Past work includes CVE-2016-9355 on the BD Alaris 8015 infusion pump with STRIDE modeling, CVSS scoring, and a confirmed new CWE-798 finding.
- Threat Modeling: STRIDE-based threat analysis with DFD diagrams, trust boundary mapping, and attack tree construction for web, hardware, and embedded targets.
- Critical Infrastructure Security: Complex network analysis, MBRA resilience modeling, and fault tree analysis applied to power distribution network research.
Security Education & Mentoring
- CTF Coaching: Helping students and junior practitioners approach CTF challenges — binary exploitation, cryptographic attacks, OSINT methodology, and web exploitation.
- Ethical Hacking Instruction: Taught CEH curriculum at APC Learning Centre and offensive hacking workshops at Caddnest. Curriculum design, lab environments, and hands-on exercises.
- Content Creation: NyxKernel YouTube channel covering offensive security techniques, tools, and methodology for practitioners and students entering the field.


