n
nomorebreachsec

John

@nomorebreachsec

Security Researcher

Inde
Anglais, Hindi
Certaines informations sont présentées en anglais.
À propos de moi
We don’t do check-the-box security tests. we break things on purpose so you don’t get breached. NoMoreBreach delivers manual penetration testing, AI-assisted red teaming, API & web security assessments, mobile app pentests, phishing simulations, and deep vulnerability discovery. Our approach is grounded in real attacker TTPs, not noisy scanners, with clear remediation guidance you can act on. Trusted by 45+ orgs to uncover hidden risks before adversaries do. nomorebreach.com... Plus d’infos

Compétences

n
nomorebreachsec
John
hors ligne • 

Voir mes services

Tests utilisateurs
I will do cybersecurity testing for your websites apps apis
De50 $US / projetPlus de détails

Expérience professionnelle

Freelance Security Researcher & Penetration Tester

Independent / Freelance • Freelance

Dec 2021 - Present4 yrs 5 mos

I work as an independent security researcher, focusing on finding real, exploitable vulnerabilities in web applications, APIs, cloud setups, and mobile platforms. Most of my work comes from bug bounty programs and private security assessments for early-stage startups and growing SaaS products. My approach is heavily manual. I spend time understanding how an application actually works, then look for logic flaws, access control issues, authentication weaknesses, IDORs, injection points, and misconfigurations that automated scanners usually miss. I also test how smaller issues can be chained together to create serious impact. For every finding, I provide clear proof of concept, explain the real-world risk in simple terms, and share practical remediation steps that developers can actually implement. The goal is not to generate long reports, but to help teams fix the problems that attackers would realistically exploit.