Aussie 15+ Years Professional GNU/Linux Sysadmin, Expert. Published Security Researcher, Penetration Testing. ISO 27001:2022 Expert. Very active on GitHub, Twitter, HackerOne & BugCrowd. PRO: Shell, Python, JS, PHP, C, C++, x86, arm, mips, xtensa/esp32. 1,000s of teams use my projects, in their projects. You can send me product hardware as part of firmware/hardware projects.
High level communicator; My native language is English. I love complex, novel tasks, that require problem-solving. My day work involves conducting static code analysis, binary analysis, web application security research, and presenting at conferences. I am able to work extremely fast. What might take someone 4 hours, takes me 15 minutes. In my spare time, I ride motorcycles, and break hardware open and report vulnerabilities to major manufacturers, usually for money (bug bounty).
Maintaining multiple massive Open Source Projects on GitHub: Trending software, 30,000+ GitHub Stars, 500,000 Downloads, 1,000+ forks - 3,000+ Comment Karma on reddit.
I publish code, exploits, and research which are assigned Common Vulnerabilities and Exposures (CVEs). Used by Enterprise & Governments all around the world to validate their security posture. I graduated from the University of Melbourne.
Very experienced in all of RHEL/CentOS/Fedora, Ubuntu/Debian, Arch/Majaro, Raspberry Pi/Odroid/Armbian, FreeRTOS/nuttX, CI/CD, Automation, DevOps, Git, Docker, etc.
I have over a decade of experience specifically in writing & securing Web Applications, providing advisory & consulting Cyber Security services, hardware reverse engineering (as a service), code decompiling/deobfuscation, intrusion detection, and knowledgable about techniques used by threat actors, e.g. malvertising, ad cloaking.
Extremely good at sophisticated automation, reversing cloaked ads, proofs of concept and creating code that can perform human tasks.
- MaxMind, DB-IP GeoIP, DNS/Bind9 Servers, residential proxies, OpenVPN, WireGuard, VestaCP, CPanel, Git, Docker, DevOps: CI/CD pipelines, VPN Kill-Switches, automated proxy switching, Selenium, Puppeteer, Chromedriver & Geckodriver
- Distil, Akamai, PerimeterX, Cloudflare, Captchas (protection & solving).
- nginx, apache, httpd, iptables, ufw, fail2ban
- Penetration testing: thousands of (ethical) hackers around the world follow my work
- ISO 27001, ISO 21434 pre-auditing, and reporting.
- Bullet-proof offshore hosting & domains and investigations
- Google Cloud, Microsoft Azure, AWS, Digital Ocean, Vultr, OVH, Rackspace, Heroku
- Twilio, TwiML, SIP, SMS, GSM, Asterisk, VoIP, FreePBX, iSymphony, Phone Systems & Virtualized Call Centers, Call Recording
- Google Cloud, Microsoft Azure, AWS, Digital Ocean, Vultr, OVH, Rackspace, Heroku
- Jailbreaking, Android, iPhones, mobile forensics & data retrieval
- iOS App inspection, CI/CD pipeline (fastlane, automated build & automated release)
- Azure, AWS, Office365.
- High knowledge on Pop-Up Ads, Pop-Unders, Honey-Pots, PPV, Tracking, Voluum, TDS, Keitaro, BossTDS, Ads
- Captive Portals: OpenWRT, Splash Pages, nodogsplash, coova chilli, wifidog, etc.
- Website takedowns, search engine removal, DMCA and "Right to Be Forgotten" requests.
I love working on new challenging projects and surprising my clients with unique & creative solutions. Always thinking outside the box and my experience in research, development, and solutions reflect this. Proudly a top-rated freelancer on Upwork (100% Success) for this reason.
As a professional in telecommunications, I am very good at communicating with people about technical solutions because my day-to-day job previously was Cloud-Based Contract Sales for Telstra, which is the biggest telecom company in Australia; Technical Solutions and B2B sales in Data, Voice & Fiber.
I'm a Linux expert and can write amazing code, applications, and scripts, in many different languages. My favourite languages are C, C++, Python and shell (BASH/POSIX). I am also very good at PHP, JavaScript and other interpretted languages. I am a master of Docker. Can create all types of interfaces, ncurses, GUI's, GTK, QT.
I can create SAAS-grade internal-use scrapers & browser automation: cURL, Selenium (chromedriver/geckodriver), auto-scaling, auto-deploy. I've written the backend for various high-traffic and high-value services.
Great at solving problems - being able to see solutions that are outside the box and use creative techniques to manipulate data or market analysis through big-data scraping.
Hope to work with you and your business.