🚀 About Me

I’m a cybersecurity professional and software developer with hands-on experience in penetration testing, vulnerability assessments, mobile app security (iOS & Android), and red team operations.

• 🛡 Skilled at identifying and mitigating security risks across enterprise environments.
• ⚡ Experienced in cloud security (AWS, Azure, GCP) and building scalable, secure systems.
• 🔍 Active bug bounty hunter on HackerOne, passionate about offensive security.
• 📚 Certified in Burp Suite, eJPT, and Linux Essentials, with additional training in red team operations and cloud security.

🏆 Certifications

• Burp Suite Certified Practitioner
• eJPT – Junior Penetration Tester
• CyberWarfare Certified Red Team Analyst
• Multi-Cloud Red Team Analyst (MCRTA)
• LPI Linux Essentials
• AWS Cloud Technical Essentials
• Cisco Intro to Cybersecurity

📂 Software Development Projects:

• JSON-interpreter - JSON-interpreter
• Pref Agent - Pref Agent
• Pokemon Stadium data structure - Pokemon Stadium
• Addressing a machine learning problem - Machine learning problem
• Hotel Program - OOP Hotel Program

📂 Cybersecurity Projects:

• HackerOne Bug Bounty Program - Reported Improper Handling of Card Type in Affirm Virtual Card API
• Burp Suite Labs Writeup - Burp Certification Labs Writeups
• CORS POC - CORS vulnerability

🧑‍💻 Experience

🔓 Pentester @ Syscloud (2024–Present)

• Performed 50+ vulnerability assessments using Nmap, Nessus, and Burp Suite Pro, reducing exploitable risks by 40%.
• Conducted Active Directory exploitation (BloodHound, SharpHound, PowerView).
• Led investigations into phishing & malware attacks, reducing incident success rates by 30%.
• Built custom exploits in Python & PowerShell simulating real-world attack scenarios.
• Delivered 100+ page professional pentest reports with actionable remediation steps.

💻 Junior Software Developer @ Algorithmics (2021–2024)

• Built full-stack web apps (React, Node.js, MongoDB).
• Improved stability by 30% fewer bugs through automated testing (JUnit, PyTest).
• Collaborated with UX/UI teams in Agile.

🔧 Technical Skills

• Pentesting Tools: Burp Suite, OWASP ZAP, Nmap, Nessus Pro, Wireshark, SQLmap, Hydra, Feroxbuster
• Languages: Python, Java, C/C++, SQL, JavaScript
• Frameworks: Metasploit, React, Node.js
• Cloud Platforms: AWS, Azure, GCP
• Other: Git, Docker, LaTeX, WordPress

🎤 Events & Conferences

• 🐍 PyCon Colombia 2024 – Python packaging & open-source contributions.
• 🕵️ Black Hat USA 2024 – Attended workshops on the latest threat landscapes.
• 👾 DEFCON USA 2024 – Capture the Flag competitions.
• 🔴 Ekoparty 2024 – Red team & AI-focused security talks.

🤳 Connect with me: