About

I'm a cloud-focused Security Architect with a strong background in offensive security, penetration testing, and application security. Over the years, I've specialized in both dynamic and static analysis techniques to identify vulnerabilities — discovering more than 30 CVEs and multiple zero-day vulnerabilities along the way.

For the last few years, I've been working as a Security Architect, helping teams build secure, robust, and reliable infrastructure on the cloud — primarily on AWS. My expertise spans both security in the cloud and security of the cloud, blending application security principles with modern cloud-native defense strategies. I enjoy leveraging built-in cloud services to implement scalable, effective security controls that address real-world risks in fast-moving, dynamic environments.

I'm also a big fan of the Serverless concept, embracing its potential to drive innovation by eliminating infrastructure management overhead and optimizing scalability for cloud-native security architectures.

Academic Publications

• Next-Generation Infrastructure and Technology Issues in 5G Systems
• Emerging Infrastructure and Technology Challenges in 5G Wireless Networks
• A Potential Architecture and Next Generation Technologies for 5G Wireless Networks

Public Disclosures

• Barco Control Room Management Suite Reflected Cross Site Scripting (XSS) Vulnerability | CVE-2022-26978
• Barco Control Room Management Suite Reflected Cross Site Scripting (XSS) Vulnerability | CVE-2022-26977
• Barco Control Room Management Suite Stored Cross Site Scripting (XSS) Vulnerability | CVE-2022-26976
• Barco Control Room Management Suite Unauthenticated Access to Security-Sensitive Resources Vulnerability | CVE-2022-26975
• Barco Control Room Management Suite Reflected Cross Site Scripting (XSS) Vulnerability | CVE-2022-26974
• Barco Control Room Management Suite Information Disclosure/Unauthenticated Vulnerability | CVE-2022-26973
• Barco Control Room Management Suite Reflected Cross Site Scripting (XSS) Vulnerability | CVE-2022-26972
• Barco Control Room Management Suite Unauthenticated License Key Update Vulnerability | CVE-2022-26971
• Barco Control Room Management Suite Unauthenticated File Path Traversal Vulnerability | CVE-2022-26233
• M-Files Web Lack of Rate Limiting Vulnerability | CVE-2021-41807
• M-Files Web Information Disclosure Vulnerability | CVE-2021-37254
• M-Files Web Improper Range Header Processing Vulnerability | CVE-2021-37253
• SAE IT-Systems FW-50 Remote Telemetry Unit (RTU) Path Traversal Vulnerability | CVE-2020-10634
• SAE IT-Systems FW-50 Remote Telemetry Unit (RTU) Reflected XSS Vulnerability | CVE-2020-10630
• Systech NDS-5000 Terminal Server Stored XSS Vulnerability | CVE-2020-7006
• Digi ConnectPort L TS 32 MEI Terminal Server Reflected XSS Vulnerability | CVE-2020-6973
• Digi ConnectPort L TS 32 MEI Terminal Server Unrestricted File Upload Vulnerability to RCE | CVE-2020-6975
• GE S2020/S2020G Industrial Fast Switch 61850 Stored XSS Vulnerability | CVE-2019-18267
• Dell EMC Open Manage Server Administrator Improper Range Header Processing Vulnerability | CVE-2019-3721
• Zoho ManageEngine OpManager SQL injection Vulnerability | CVE-2018-20173
• Zoho ManageEngine OpManager SQL injection Vulnerability | CVE-2018-20338
• Zoho ManageEngine OpManager Stored XSS Vulnerability | CVE-2018-19921
• Zoho ManageEngine OpManager Stored XSS Vulnerability | CVE-2018-20339
• Zoho ManageEngine OpManager Stored XSS Vulnerability | CVE-2018-19288
• Zoho ManageEngine OPManager Stored XSS Vulnerability | CVE-2018-18262
• Zoho ManageEngine OpManager Unrestricted File Upload Vulnerability to RCE | CVE-2018-18475
• Zoho ManageEngine OpManager SQL injection Vulnerability | CVE-2018-17243