I do security assessments for (web) applications, APIs, and their supporting infrastructure. My focus is mostly on manual and code-level analysis instead of solely relying on automated scanners. I review how your systems actually work and what risks exist.
I hold OSCP, OSWE, and CRTP certifications and publish my own security research including CVE disclosures from time to time. If you need a thorough assessment of your application or server, or want to discuss your security posture, get in touch.
โ๏ธ Email me๐ Call me
Interested in reading technical write-ups? Here are the latest articles I wrote about security:
FileMaker Server Admin Console: Access and Role Restriction Issues
Exploring the fmp12 file format; or: what was my password again?
Connecting to a private Windows EC2 instance without exposing RDP to the internet
๐ฉ๐ช Zur deutschen Version