Services
Top services for web application security, API review, and .NET remediation.
I partner with businesses that need a practical engineer who can assess application risk, fix weak implementation details, and improve performance in systems that already matter to the business.
Web application pentest
Focused testing and review for web applications that need stronger assurance against the attack paths most likely to affect business systems.
- Testing across XSS, broken authentication, IDOR, XXE, and file inclusion risks
- Review of server-side attack paths including SSRF and SSTI
- Clear, practical findings that teams can act on quickly
API and authentication security review
Assessment of APIs, authentication flows, and authorization boundaries to expose weak access control and risky implementation decisions.
- Assessment of API exposure and OWASP API Security risks
- Review of authentication, roles, and access-control logic
- Security guidance grounded in both HTB Academy and production remediation work
.NET remediation and production hardening
After issues are found, I help fix the code, improve the architecture, and stabilize the system so teams leave with a stronger application, not just a report.
- Fixes for SQL injection, unsafe input-handling, and weak role configuration
- Performance improvement across queries, rendering, and backend workflows
- Production-focused .NET delivery with cleaner implementation and safer releases
What this covers
Commercially relevant security work for modern business applications.
XSS, broken authentication, IDOR, XXE, file inclusion, CSRF, and insecure input-handling patterns.
Review of SSRF, SSTI, SSI, and backend behaviors that can create deeper compromise paths.
API and OWASP API Security-aligned review for overexposure, auth weaknesses, and abuse paths.
Process
A focused engagement model.
Each engagement starts with fast discovery, clear priorities, and implementation aimed at business outcomes instead of noise.
Assess
Review the application, identify bottlenecks or risks, and define the highest-value problems to solve first.
Implement
Ship fixes, improvements, or new features with clean architecture and maintainable code as the baseline.
Stabilize
Validate results, document important decisions, and leave the system in a healthier state for your team.
Need help improving a slow or vulnerable application?
Let's talk through the technical problem and the most effective way to solve it.
Contact me