Pentester
I conduct penetration testing (VAPT) across cloud infrastructures and network environments. I identify misconfigurations within AWS services, perform attack simulations, and develop remediation strategies for discovered vulnerabilities. I develop security automation tools and contribute to the open-source ecosystem.
My skills
Contributions @xeloxa
Things I've built
S3Finder
AI-Powered S3 Bucket Enumeration Tool with high-concurrency scanning, CT log reconnaissance, AI-powered name generation, permutation engine, and adaptive rate limiting.
AWS CLF-C02 Notes
Comprehensive Turkish notes and exam tips for the AWS Certified Cloud Practitioner exam.
HackPaper
Security blog featuring technical content on AWS, Azure, GCP architectures, penetration testing, and security automation.
WP-Hunter
WP-Hunter is a WordPress plugin reconnaissance tool designed for security exploration. It evaluates the probability of potential vulnerabilities or outdated plugins by analyzing metadata and installation patterns.
Coming Soon
A new security tool is in development. Stay tuned for updates!
Security Research & CVEs
Coming Soon
Vulnerability research in progress. Stay tuned for CVE disclosures!
crafted with purpose — @xeloxa