4. Security & Compliance

Provides security best practices for Mapbox access tokens, including scope management, URL restrictions, and rotation strategies.

Provides security best practices and threat mitigation patterns for PACT framework development, covering authentication, data protection, and vulnerability review.

Specializes in implementing secure authentication mechanisms including JWT, cookie-based sessions, and MFA for web applications.

Automates resolution of Dependabot security alerts in Java/Gradle projects through severity-based processing and CI validation.

Conducts security analysis on code changes, covering credential scanning, input validation, authentication checks, and dependency vulnerability assessment.

Provides identity verification, KYC compliance, and fraud prevention services for account holder information retrieval including name and address.

Enforces API security best practices to prevent OWASP Top 10 vulnerabilities including SQL injection and XSS.

Guides on using ffuf for web fuzzing in penetration testing, covering authenticated scans, auto-calibration, and result analysis.

Guides developers in identifying and patching security vulnerabilities, including CWE-classified flaws and injection issues, to enhance code security.

Generates self-signed SSL/TLS certificates using OpenSSL, including private keys, CSRs, and PEM files, with verification and common pitfalls.

Removes JavaScript and XSS payloads from HTML while preserving original document structure for secure content handling.

Guides recovery and secure removal of sensitive data from Git history after reset or rebase operations to prevent leaks.

Guides extraction of secrets from protected binaries using static and dynamic analysis for security assessment and vulnerability discovery.

Removes sensitive credentials and secrets from Git repositories to prevent exposure and ensure security compliance.

Recover and securely remove leaked secrets from Git repositories, including orphaned commits and unreachable objects, to prevent security breaches.

Guides linear cryptanalysis for FEAL cipher, enabling key recovery from known plaintext-ciphertext pairs via mathematical analysis.

Provides guidance for identifying and fixing security vulnerabilities in code, including CVE/CWE remediation and common attack types like SQL injection and XSS.

Guides cracking 7z archive password hashes using dictionary or brute-force methods for security testing and password recovery.

Guides implementation of differential cryptanalysis on FEAL and Feistel ciphers for key recovery and vulnerability exploitation in security challenges and CTF exercises.

Guides implementation of differential cryptanalysis on FEAL and Feistel ciphers, emphasizing valid characteristic construction for key recovery.

Guides linear cryptanalysis for FEAL and Feistel ciphers, enabling key recovery from known plaintext-ciphertext pairs.

Guides cracking 7z archive password hashes for security testing, CTF challenges, and authorized password recovery scenarios.

Guides recovery of passwords and sensitive data from disk images, corrupted files, and forensic scenarios.

Removes JavaScript from HTML to prevent XSS attacks while preserving structure, essential for secure content sanitization.