Certified Security Professional specializing in web application penetration testing. I help businesses identify and fix security vulnerabilities before malicious actors can exploit them. With working experience as a lead security analyst and 4 industry certifications, I provide comprehensive security assessments that go beyond surface-level testing. My approach involves performing automated testing that leverages security tools (fuzzing) & manual testing to account for areas these tools may have missed. Vulnerabilities I actively look out for include:
☑️ Cross-site scripting (XSS)
☑️ XML External Entities (XXE)
☑️ Local & remote file upload
☑️ SQL Injection
☑️ Server Side Template Injection (SSTI)
☑️ Remote Code Execution (RCE)
☑️ Authentication vulnerabilities
☑️ And many more...
Upon completion, expect a professionally written report that lists all findings, their proof-of-concepts (PoC), and remediation steps.