Offensive Security professional focused on Web2 and Web3 application security, DeFi infrastructure, and smart contract auditing. Specializing in smart contract security research, offensive security assessments, protocol analysis, and Web2/Web3 attack surface exploration.
Pentester/AppSec | Web2/Web3 Security Researcher | Smart Contract Security Researcher
- 🛡️ Security Audits — Smart contract audits, findings & reports
- 🦅 CodeHawks First Flights — Public First Flight submissions
- 📝 Technical Articles — Deep-dives into blockchain security, infrastructure attacks, and offensive security research
- 🧠 15+ years of experience in IT, from Help desk → Linux SysAdmin → DevOps → Pentester/AppSec → Offensive Security Manager.
- ⚙️ Strong background in automation, scripting, and infrastructure management (Python, Bash, C/C#).
- 🔒 5+ years in Offensive Security, including PTaaS, Vulnerability Research, Red Teaming and Application Security.
- 🧱 Currently focused on Smart Contract Auditing and DeFi protocol security, bridging Web2 expertise with Web3 technology.
- Solidity · Foundry · EVM
- Auditing production-ready smart contracts and research-driven blockchain projects
- Gas optimization, security best practices, and vulnerability analysis
- Participation in CodeHawks First Flights, Private Audits, Contests and deep technical research
- Fuzzing & Formal verification · Slither · Aderyn · Echidna
- Threat modeling, architecture review, exploit development and PoC development for on-chain security
- PTaaS (Pentesting-as-a-Service) · Web apps · APIs · Cloud · Internal · External · Wi-Fi · Mobile
- Python · Bash · C · C# · Linux · Windows
- Methodologies: PTES, OWASP; reporting, remediation planning
Blockchain Basics Course
Solidity Smart Contract Development
Foundry Fundamentals
Advanced Foundry
Smart Contract Security
EVM Bootcamp
Advanced Solidity Bootcamp
Smart Contract Hacking
- Researching Web3 attack surfaces across smart contracts, frontends, infrastructure, and CI/CD pipelines
- Building a deep understanding of on-chain risk surfaces
- Analyzing real-world protocol vulnerabilities and developing PoCs
- Contributing to public audits, private security reviews and technical security research.
“Breaking things to make them safer.”