I’m a security researcher focused on discovering vulnerabilities and building detection systems that actually work at scale. Over the past 5+ years, I’ve spent a lot of time breaking into web applications, APIs, and mobile apps—then figuring out how to automate that process.

Most of my work involves hunting for the gaps that others miss: misconfigurations, exposed secrets, insecure deserialization patterns. I enjoy the technical depth—reverse engineering Android apps, analyzing exploit chains, understanding how attackers really operate.

I’ve been fortunate to speak at a few security conferences and contribute some open-source tools to the community. But honestly, the best part is the process: finding a vulnerability, understanding the root cause, and then building something that prevents it from happening again.

When I’m not researching, you’ll find me playing piano, kicking a football around, or diving into security concepts that interest me.