Services
Application Security
Services
Penetration testing, code reviews, cloud assessments, and more — scoped to your application and threat model.
What I offer
Each engagement is tailored to your stack, threat model, and compliance needs.
Web Application Penetration Testing
Manual and automated testing of your web applications against OWASP Top 10 and beyond.
API Security Testing
Identify and remediate vulnerable endpoints, broken authentication, and data exposure in your APIs.
Mobile App Penetration Testing
Android and iOS testing for insecure storage, weak authentication, and runtime manipulation.
Cloud Security Assessment
Configuration review, access controls, and data protection for AWS, Azure, and GCP environments.
Secure Code Review
Manual review for insecure patterns, hardcoded secrets, and logic flaws in your source code.
Software Composition Analysis
Identify vulnerable open-source dependencies and license risks across your software supply chain.
WordPress Website Security
Security audits, plugin reviews, and hardening for WordPress-powered sites.