n
nomorebreachsec

John

@nomorebreachsec

Security Researcher

Índia
Inglês, Hindi
Algumas informações são exibidas no idioma inglês.
Sobre mim
We don’t do check-the-box security tests. we break things on purpose so you don’t get breached. NoMoreBreach delivers manual penetration testing, AI-assisted red teaming, API & web security assessments, mobile app pentests, phishing simulations, and deep vulnerability discovery. Our approach is grounded in real attacker TTPs, not noisy scanners, with clear remediation guidance you can act on. Trusted by 45+ orgs to uncover hidden risks before adversaries do. nomorebreach.com... Saiba mais

Habilidades

n
nomorebreachsec
John
offline • 

Conheça meus serviços

Testes com Usuário
I will do cybersecurity testing for your websites apps apis
A partir deUS$ 50 /projetoMais detalhes

Experiência profissional

Freelance Security Researcher & Penetration Tester

Independent / Freelance • Freelance

Dec 2021 - Present4 yrs 5 mos

I work as an independent security researcher, focusing on finding real, exploitable vulnerabilities in web applications, APIs, cloud setups, and mobile platforms. Most of my work comes from bug bounty programs and private security assessments for early-stage startups and growing SaaS products. My approach is heavily manual. I spend time understanding how an application actually works, then look for logic flaws, access control issues, authentication weaknesses, IDORs, injection points, and misconfigurations that automated scanners usually miss. I also test how smaller issues can be chained together to create serious impact. For every finding, I provide clear proof of concept, explain the real-world risk in simple terms, and share practical remediation steps that developers can actually implement. The goal is not to generate long reports, but to help teams fix the problems that attackers would realistically exploit.