4. Security & Compliance

Assists in configuring OAuth 2.0 flow operations for secure authorization and authentication processes.

Validates CSRF protection mechanisms including tokens, cookies, and SameSite attributes to identify vulnerabilities in web applications.

Systematically evaluates web pages against WCAG 2.2 Success Criteria using accessibility tree inspection and visual analysis for compliance auditing.

Provides forensic analysis of GitHub events via BigQuery to investigate security incidents, verify repository activity, and reconstruct attack timelines with immutable evidence.

Generates, exports, loads, and verifies forensic evidence from GitHub sources including API, archives, and security reports for security investigations and compliance.

Provides security checklists and patterns for authentication, input handling, secrets management, and API endpoints in sensitive features.

Manages secure storage, rotation, and retrieval of secrets (like credentials) in AWS, ensuring compliance and reducing security risks.

Provides AWS Cognito user authentication and authorization services, including user pools, OAuth flows, and social identity integration.

Configures and manages authentication providers (e.g., OAuth, SAML, Email) for web applications using CloudBase Auth tool and MCP.

Configures and manages authentication providers (e.g., email, Google, OAuth) for web applications using CloudBase Auth and MCP API.

Expertise in LLVM security features for compiler-based exploit mitigation, vulnerability analysis, and application hardening.

Enables LLVM-based static analysis for security scanners, bug detection, and code quality assessment.

Expertise in LLVM-based code obfuscation for enhancing software security via anti-reverse engineering techniques like control flow flattening and string encryption.

Converts machine code to LLVM IR for reverse engineering, binary analysis, decompilation, and deobfuscation.

Extracts findings from PDF audit reports and converts them into a markdown checklist for action items.

Headless binary reverse engineering with Ghidra for decompiling executables, extracting functions, and analyzing call graphs without GUI.

Comprehensive auditor for Vue 3 applications using Pinia, IndexedDB, and PouchDB, identifying data safety risks and providing remediation guidance.

Automates security testing, vulnerability scanning, and compliance validation to strengthen organizational security posture.

Performs security testing to identify and validate Cross-Site Scripting (XSS) vulnerabilities in web applications.

Specializes in identifying and testing command injection vulnerabilities in applications to prevent unauthorized system command execution.

Specialized methodology for identifying and testing SQL injection vulnerabilities in web applications.

Specialized methodology for identifying and testing XML External Entity (XXE) injection vulnerabilities in web applications.

Specializes in identifying vulnerabilities and ensuring security compliance in mobile applications through systematic testing methodologies.

Performs security-focused code reviews to identify vulnerabilities and enforce secure coding standards.