I specialize in web application and mobile security research with a primary focus on:
- Authentication & Authorization Bypass β OAuth flows, JWT weaknesses, session management failures
- API Security β REST API abuse, mass assignment, parameter pollution, cross-tenant IDOR
- Real-time Protocol Security β WebSocket authentication bypass, private event channel hijacking
- Secret Exposure β SSR framework leaks, JS bundle analysis, supply chain passive recon
- Mobile Security β Frida Gadget injection, SSL pinning bypass, APK analysis, gRPC interception
- Business Logic Flaws β Tenant isolation failures, privilege escalation, access control gaps
All research follows OWASP Top 10:2025 Β· CWE mapping Β· Responsible disclosure only
All research conducted under authorized bug bounty and VDP programs only. Responsible disclosure principles strictly followed across all engagements.
| Vulnerability | CWE | Severity | Platform | Status |
|---|---|---|---|---|
| Cross-tenant WebSocket authentication bypass β unauthorized private channel subscription across tenant boundaries via improper Pusher auth token issuance β real-time security event eavesdropping confirmed | CWE-284 | π΄ High | Intigriti | Under Review |
| Server-side authorization bypass β cross-tenant write operations accepted with misleading 2xx responses bypassing tenant isolation controls | CWE-755 | π‘ Medium | Intigriti | Under Review |
| Tenant workspace enumeration via distinguishable API error responses on authenticated endpoints | CWE-203 | π’ Low | Intigriti | Under Review |
| SSR framework secret exposure β production API token leaked in client-side state hydration β full read/write dataset access independently confirmed | CWE-798 | π΄ High | HackerOne VDP | Independently Validated |
| Hardcoded blockchain service credentials exposed in public JS bundle β multi-network surveillance risk across 7 chains | CWE-798 | π‘ Medium | Bugcrowd | Independently Validated |
| IDOR on financial ranking endpoint β private user financial data exposure | CWE-639 | π‘ Medium | Bugcrowd | Independently Validated |
| RBAC failures Β· AI endpoint over-privilege Β· security misconfigurations across live production assets β mapped to OWASP Top 10:2025 | CWE-862, CWE-1336, CWE-693 | π‘ Medium | NCSA Bug Bounty VDP | Certificate of Appreciation |
Web Application β IDOR Β· XSS Β· SQLi Β· SSRF Β· CSRF Β· Auth Bypass Β· Business Logic
API Security β REST abuse Β· Mass Assignment Β· Parameter Pollution Β· JWT Attacks
Mobile Security β Frida Β· objection Β· APK patching Β· SSL pinning bypass Β· gRPC interception
Recon β Subdomain enum Β· JS bundle analysis Β· SSR secret hunting Β· OSINT
WebSocket β Auth bypass Β· Channel hijacking Β· Cross-tenant event eavesdropping
OAuth/Session β State CSRF Β· redirect_uri bypass Β· Token leakage Β· Session fixation
Blockchain β Smart contract recon Β· API key exposure Β· Web3 endpoint analysis
SIEM β Wazuh β custom detection rules Β· alert correlation Β· log forensics
Threat Detection β Honeypot deployment Β· botnet identification Β· DPI analysis
Malware Analysis β Android static analysis Β· ML-based detection Β· behavior mapping
Core β Burp Suite Β· Kali Linux Β· Postman Β· Nuclei
Recon β Subfinder Β· ffuf Β· XnLinkFinder Β· Amass Β· httpx
Mobile β Frida Β· objection Β· apktool Β· adb Β· apksigner
Analysis β Wireshark Β· jwt.io Β· CyberChef Β· Shodan
Scripting β Python Β· Bash Β· Docker
| Project | Focus | Impact |
|---|---|---|
| frida-ssl-bypass-setup | Non-rooted Android SSL pinning bypass β Frida Gadget injection methodology | Mobile Bug Bounty Β· CWE-295 |
| Supply-Chain-Secret-Hunting | SSR token exposure via passive JS bundle recon | CWE-798 Β· High Β· Independently Validated |
| NCSA-VDP-Assessment | Full passive VAPT β RBAC, AI over-privilege, misconfigs | Certificate of Appreciation |
| FUTURE_CS_03 | API Security β 9 vulnerabilities on OWASP crAPI | OWASP Β· CVE Β· MITRE mapped |
| android-malware-analysis | ML malware detection β Random Forest β 100% recall | Static analysis Β· scikit-learn Β· Python |
| SAIZERO-Cowrie-Honeypot | SSH honeypot β real botnet confirmed β Wazuh SIEM integration | Real-world threat intelligence |
| wazuh-nmap-detection | Real-time scan detection β TCP/UDP/ICMP β Level 15 critical alerts | Custom Wazuh rule engine |
| wazuh-homelab | Enterprise-grade Wazuh Manager & Agent homelab | Production-ready SIEM setup |
A01 Broken Access Control ββββββββββββββββββββ IDOR Β· Tenant Isolation Β· RBAC Bypass
A02 Cryptographic Failures ββββββββββββββββββββ JWT Β· Token Exposure Β· Weak Crypto
A03 Injection ββββββββββββββββββββ SQLi Β· XSS Β· SSTI Β· Command Injection
A04 Insecure Design ββββββββββββββββββββ Business Logic Β· Auth Flow Design
A05 Security Misconfiguration ββββββββββββββββββββ API Keys Β· Headers Β· Debug Endpoints
A06 Vulnerable & Outdated Components ββββββββββββββββββββ Supply Chain Β· Dependency Analysis
A07 Auth & Identification Failures ββββββββββββββββββββ OAuth Β· WebSocket Β· Session Fixation
A08 Software & Data Integrity ββββββββββββββββββββ Webhook Β· Supply Chain Β· JS Tampering
A09 Security Logging & Monitoring ββββββββββββββββββββ Blind Spots Β· Error Disclosure
A10 Server-Side Request Forgery ββββββββββββββββββββ Webhook Abuse Β· Integration Endpoints
| Credential | Issuer |
|---|---|
| π― CICSA β Certified IT Infrastructure & Cyber SOC Analyst | RedTeam Hacker Academy |
| π― National Cybersecurity Certification | NCSA Maldives |
| π BSc Computer Science | Alagappa University |
current_targets = {
"priority_1": "Mobile API surface β gRPC method enumeration via Frida",
"priority_2": "OAuth CSRF β state parameter validation bypass",
"priority_3": "SSRF via webhook and integration endpoints",
"priority_4": "JWT algorithm confusion β HS256 β none/RS256",
"priority_5": "Mass assignment on user profile endpoints"
}
methodology = "OWASP Top 10:2025 β Threat model β PoC β Responsible disclosure"
affiliation = "SAIZERO β Ground Zero Defence"
SAIZERO β Ground Zero Defence
Affiliated independent security research unit Β· Est. 2025
CyberLycan β Every shadow has a hunter πΊ