Experience

• 

  Hackerone

  Jan 2020 - now

  Vulnerability researcher

  I perform tests daily on several systems written in different programming languages and I was able to find critical vulnerabilities in systems with great impact on several large companies that are present on HackerOne.

• 

  Ciss s.a - gestão para o varejo

  Aug 2021 - now

  Offensive security specialist

  Responsibilities:- Vulnerability Assessment and Penetration Testing (VAPT)- Exploitation and post-exploitation- Development of penetration testing tools- Cloud security assessments- Threat hunting and threat intelligence- Security research and tool development- Social engineering and phishing- IoT and embedded system testing- Advanced threat emulation- Malware testing and study- Reporting and documentation- Security and automation tools- Collaboration with the DevSecOps team- Collaboration with the Blue Team to improve our monitoring and alerting rules- Understanding critical flows and identifying security best practices- Validation and provision of recommendations for security vulnerabilities- Interact with different teams to prioritize actions and mitigate risks- Wireless and physical network exploration and Active Directory- Development of security training and processes- Investigate compliance and security standards- Incident response support Show less

• 

  Bugcrowd

  Feb 2022 - now

  Vulnerability researcher

  perform tests daily on several systems written in different programming languages and I was able to find critical vulnerabilities in systems with great impact on several large companies that are present on Bugcrowd.

• 

  Owasp® foundation

  Jan 2024 - now

  Community member and security project researcher

  I joined the Project Security as a volunteer.- Security architecture- Vulnerability analysis- Modeling of trees- Security by Design- Security in Applications- Cyber Threat Intelligence

• 

  Blackarch linux

  Feb 2024 - now

  Community member and pkgbuild developer

  Package Development (PKGBUILDs):Create and maintain PKGBUILD scripts to package and install software on BlackArchLinux.Regularly update existing packages to ensure compatibility, security fixes, and performance improvements.Community Collaboration:Actively engage with the user community to understand their needs and requests for new packages.Respond to package-related queries and issues, providing technical support and solutions.Testing and Verification:Perform quality testing on new and existing packages to ensure their proper functionality and integration with the BlackArchLinux system.Verify the security and stability of packages to ensure they meet distribution standards.Contribution to Project Development:Participate in discussions and decisions related to the development and direction of BlackArchLinux.Collaborate with other developers to improve processes, tools and documentation. Show less