I will do penetration testing and web application security testing

Germany

I speak English, Hindi, German, Spanish

Application Security Penetration Testing Practitioner

I am an application and offensive security practitioner with enterprise penetration-testing experience and an MSc in Cyber Security. I specialize in web and API testing, secure code review, and AI/LLM...
About this Gig

I find real vulnerabilities in web applications and APIs through manual penetration testing, not just automated scanner output.


Most cheap "pentest" gigs run a tool, copy the results, and call it done. I read your actual code and logic, test authentication flows, access controls, and business logic for the flaws that scanners miss entirely broken access control, IDOR, injection points, and logic abuse.


I also test AI and LLM-powered features for prompt-injection and AI-specific risks under the OWASP LLM Top 10, a layer most pentesters don't cover. I built and published an open-source LLM prompt-injection defense system, so I understand both sides of this problem.


I've found and responsibly disclosed real vulnerabilities through bug bounty programs, including a critical sandbox-escape finding (CVSS 9.9) in an open-source AI agent framework.


Every engagement ends with a clear report: what I found, how severe it is, proof it's real, and exactly how to fix it. No jargon, no padding, no findings you can't act on.


If you need someone who actually digs in and tells you the truth about your security posture, let's talk.

Cloud provider:

Microsoft Azure

Expertise:

Installation

Backup

Debugging

Configuration

My Portfolio