About me

I’m doing machine learning & security research and participate in CTFs and Bug Bounty Programs.

Certs:

  • OSCP / OSCE / OSWE
  • CISSP

Trainings:

  • Deep Learning Specialization by Andrew Ng
  • SAP Cyber-Security for IT Security Practitioners by Jordan Santarsieri
  • SANS760 - Advanced Exploit Development for Penetration Testers by Stephen Sims
  • Vulnerability Discovery and Triage Automation by Richard Johnson
  • Reverse Engineering with IDA Pro by Chris Eagle

Profiles:

About the blog

I run this blog to remember things I encounter on penetration tests, research or ctfs. The notes section is created to quickly lookup commonly used techniques and commands.

Research Interest

On the offensive side I focus on binary analysis, fuzzing, exploitation. Otherwise I focus on machine learning and its applications for intrusion detection.

Publications

[1] On the Practicality of Symbolic Execution on Binary Code (2018) (German)

[2] Fuzzing mit AFL (2018) (German)

[3] Konzeption und prototypische Implementierung eines Linux-Instrumentierungs-Plugins für S2E (2015) (German)

Bug Bounty

Bugcrowd

Kaggle

CTF

I’m currently most active on hackthebox.eu.

Hack The Box