My Timeline

Presented a talk at OWASP London Chapter on detecting companies exposed to the Salesloft Drift breach utilising my recent work on DNS-Based OSINT techniques.

Engaged with UK policymakers, government officials & security professionals in parliment at Westminster, London to brief on vulnerability research and software supply chain security, contributing to policy discussions on national UK security.

Utilised recent work on DNS-Based OSINT techniques to identify companies exposed to the Salesloft Drift breach, sharing findings and detection methods in a detailed blog post.

Delivered a workshop-style talk at BSides Porto (0xcode Village) on detecting companies exposed to the Salesloft Drift breach utilising recent work on DNS-Based OSINT techniques.

Presented a talk at BSides Cymru on detecting companies exposed to the Salesloft Drift breach utilising recent work on DNS-Based OSINT techniques.

Recognised by the UK Government's NCSC for a vulnerability script on CVE-2025-10035, targeting GoAnywhereMFT instances.

Actively creating educational OSINT videos for the UK OSINT community, focusing on practical techniques and tools for effective open-source intelligence gathering.

Researched and developed a detection script for CVE-2025-8875 & CVE-2025-8876 which was widely accepted by the community, gaining significant engagement on X.

Presented a tactics talk at Red Team Village on DNS-Based OSINT Tactics for Product and Service Discovery.

BSidesLV CTF Winner

Participated in the ProsVJoes CTF at BSides Vegas achieving 1st place. #pinkpwnyclub

Developed a script to identify internal security measures by analysing publicly exposed Safebase portals, without requiring local agents or direct contact with the organisation.

Acknowledged by CERT Polska - one of Europe's leading national cybersecurity response teams for contributions to the detection of the zero-day vulnerability CVE-2025-49113, supporting their rapid incident response efforts.

Personal Website

The development of a personal website using Javascript and embedded CSS.

An in-depth analysis of the CVE-2025-31324 zero-day vulnerability, highlighting its implications, detection and mitigation strategies.

Exploring the ethical boundaries of collecting personal data through open-source intelligence (OSINT) and the balance between transparency and responsibility.

UK OSINT Officer

OWASP Member

An active contributor for the OWASP Amass Project.

Vulnerability script for CVE-2023-40000 is now featured on the NVD (National Vulnerability Database) page maintained by NIST.

Developed over 100 detection templates for Nuclei to identify phishing websites.

An automated workflow to check the CISA KEV against Nuclei templates to check for detection capabilities, also includes automated messages to Slack.

Recognised for significant contributions by Project Discovery.

Creating OSINT and vulnerability detection templates for the Nuclei Templates repository.

Homelab Development

A self-built lab environment for experimenting with network security, penetration testing, and system administration in a controlled setting. Features server infrastructure, network segmentation, and security hardening for hands-on cybersecurity practice.

KYND

KYND

Utilising Hak5's tools to create automation scripts to bypass security features on both Windows and Linux, focusing on USB attack vectors and physical security vulnerabilities.

ECC

Leading a team to develop a versatile, verified Discord bot with robust moderation tools, modmail, fun commands, and custom utilities to enrich server communities. It now serves over 400,000 users and growing!

HSBC Bank

Started exploring photography as a creative outlet, focusing on urban landscapes, street photography, and night scenes. Documenting the world through a different lens.