Star Offerings Star

  • Red Team & Penetration Testing
  • - Web Application Pentesting

    - API Security Assessment

    - Network Penetration Testing

    - Vulnerability Exploitation

    - Structured Reporting & Remediation

  • Offensive Tooling & Scripting
  • - Recon Automation (Python / Bash)

    - Custom Exploit Development

    - Security Tool Development

    - Nuclei Template Authoring

    - CI/CD Security Pipeline Integration

  • Hardware & Embedded Security
  • - Embedded Firmware Security Review

    - Bare-Metal Cryptographic Implementation

    - HSM Design & Protocol Analysis

    - ARM Cortex-M Security

    - IoT Attack Surface Assessment

  • Secure Full-Stack Development
  • - Security-First Web Application Development

    - Secure API Design (REST / GraphQL)

    - Frontend & Backend Hardening

    - Auth System Design (JWT, OAuth, RBAC)

    - Blockchain & Smart Contract Security

  • Vulnerability Research & Consulting
  • - CVE Research & Exploit Chain Documentation

    - STRIDE Threat Modeling

    - CVSS Scoring & Risk Assessment

    - Medical Device Security (IEC 62443 / FDA)

    - Critical Infrastructure Security

  • Security Education & Mentoring
  • - CTF Coaching & Challenge Design

    - Ethical Hacking Curriculum (CEH-level)

    - Exploit Development Workshops

    - NyxKernel YouTube — Offensive Security Content

    - Technical Writing & Security Textbook Authoring

Star Offerings Star

Red Team & Penetration Testing

- Web Application Pentesting: Manual and automated assessment of web apps and APIs targeting OWASP Top 10 — injection, broken access control, IDOR, SSRF, auth flaws, and business logic vulnerabilities.

- Network Penetration Testing: Host discovery, service enumeration, exploit selection, privilege escalation, and lateral movement reporting with full remediation guidance.

- Bug Bounty Research: Ongoing HackerOne experience across private and public programs. Structured vulnerability disclosure with severity scoring and reproduction steps.

Offensive Tooling & Scripting

- Recon Automation: Building Python and Bash pipelines that integrate Nmap, Sublist3r, Amass, Nuclei, and custom templates for continuous security assessment.

- Exploit Development: Custom exploits for CTF-style binary targets and real-world vulnerability research. Experience with buffer overflows, format strings, and ROP chains.

- CI/CD Security Integration: Embedding security tooling (Nuclei, DAST scanners) into GitHub Actions pipelines for automated continuous assessment.

Hardware & Embedded Security

- Bare-Metal Firmware Security: Cryptographic primitive implementation in C on ARM Cortex-M (AES-CBC-256, HMAC-SHA256, HKDF). Replay-resistance, nonce management, and secure key derivation for resource-constrained environments.

- HSM Protocol Design: Session-based key management, hierarchical permission systems, and flash-based secure storage design — applied in MITRE eCTF 2026 on the TI MSPM0L2228.

- IoT Attack Surface Assessment: Hardware interface analysis, firmware extraction, and embedded vulnerability research. Familiar with medical device security frameworks (IEC 62443, FDA premarket guidance).

Secure Full-Stack Development

- Security-First Application Development: Building production web and mobile applications with security baked in — auth systems, input validation, output encoding, and dependency auditing from the start.

- Secure API Design: REST and GraphQL APIs with RBAC, JWT implementation, rate limiting, and defense against BOLA, mass assignment, and broken auth.

- Application Hardening: Code review, dependency scanning, secrets detection, and vulnerability patching for existing applications.

Vulnerability Research & Consulting

- CVE Research: Full-stack vulnerability analysis from technical exploitation to structured reporting. Past work includes CVE-2016-9355 on the BD Alaris 8015 infusion pump with STRIDE modeling, CVSS scoring, and a confirmed new CWE-798 finding.

- Threat Modeling: STRIDE-based threat analysis with DFD diagrams, trust boundary mapping, and attack tree construction for web, hardware, and embedded targets.

- Critical Infrastructure Security: Complex network analysis, MBRA resilience modeling, and fault tree analysis applied to power distribution network research.

Security Education & Mentoring

- CTF Coaching: Helping students and junior practitioners approach CTF challenges — binary exploitation, cryptographic attacks, OSINT methodology, and web exploitation.

- Ethical Hacking Instruction: Taught CEH curriculum at APC Learning Centre and offensive hacking workshops at Caddnest. Curriculum design, lab environments, and hands-on exercises.

- Content Creation: NyxKernel YouTube channel covering offensive security techniques, tools, and methodology for practitioners and students entering the field.

BGSign

Skills & background

Qualifications

button
BGIcon

See my
Resume

button
BG

Stay Connected

Profiles

button