oklaqusai

Cybersecurity Specialist | Penetration Tester | Certified Vulnerability Researcher With hands-on experience in offensive security and vulnerability research, I specialize in identifying and responsibly disclosing security flaws across web applications, APIs, and network infrastructures. My work on global bug bounty platforms has resulted in Hall of Fame recognitions from Amazon, Ford, Vueling, and Comelit Group, demonstrating my ability to uncover critical, high-impact vulnerabilities. Core Areas of Expertise: Penetration Testing & Web Application Security Conduct comprehensive security assessments targeting web applications and APIs, identifying vulnerabilities including SQL injection, XSS, CSRF, IDOR, and privilege escalation. Utilize industry-standard tools: Burp Suite, OWASP ZAP, Metasploit, Nmap, and Kali Linux. Deliver proof-of-concept reports with clear remediation recommendations. Vulnerability Discovery & Responsible Disclosure Actively participate in HackerOne bug bounty programs, testing global platforms such as LINE, State.gov, Shopify, and IBM. Practice responsible disclosure, collaborating with development teams to validate and remediate findings. Recognized for critical vulnerability discovery in Amazon's ecosystem. IT Security & Threat Analysis Perform network penetration testing simulating real-world attack vectors, including lateral movement and privilege escalation. Conduct vulnerability assessments using Nessus, OpenVAS, and manual testing methodologies. Analyze security postures and develop mitigation strategies to strengthen organizational defenses. Cisco CCNA certified with strong understanding of network architecture, firewalls, and intrusion detection. Technical Documentation & Remediation Prepare structured, professional vulnerability reports for technical and non-technical stakeholders. Develop and present remediation strategies based on assessment findings. Maintain clear documentation of security procedures and findings.