About | Bug vs Me | Expert Penetration Testing Services

Deep Expertise in Vulnerability Research

With over 4 years of dedicated experience in penetration testing and vulnerability research, I've built a reputation for thorough, manual security assessments that uncover what automated tools miss.

As a solo security researcher, I offer a personalized approach to penetration testing, ensuring complete privacy and confidentiality for all client engagements. My methodology focuses on deep, comprehensive testing rather than surface-level scans.

Having discovered over 500 vulnerabilities, including 50+ critical issues, my work has helped secure applications used by millions of people worldwide.

Cross-Site Scripting (XSS)

Insecure Direct Object References (IDOR)

Broken Access Controls (BAC)

Remote Code Execution (RCE)

Business Logic Vulnerabilities

API Security Testing

Trusted By Industry Leaders

I've discovered and responsibly reported security vulnerabilities in applications from these leading companies:

Facebook

Multiple XSS and access control vulnerabilities

Epic Games

Critical account takeover vulnerabilities

Metamask

Security issues in browser extension

T-Mobile

API vulnerabilities affecting customer data

My Approach

Thorough Reconnaissance

I begin with extensive reconnaissance to understand your application's attack surface and functionality in depth.

Manual Testing

Unlike automated scanners, I manually test each aspect of your application to find vulnerabilities that tools miss.

Privacy-Focused

As a solo practitioner, your sensitive data and findings remain completely confidential throughout our engagement.

Detailed Reporting

Receive comprehensive reports with clear reproduction steps and practical remediation advice.

About Bug vs Me