Security Tech Lead - Security Assurance at Deriv with 6+ years across application security, secure code review, cloud security, DevSecOps, and AI-driven security automation.
I build practical security tooling: archives, dashboards, recon helpers, CVE monitoring, and automation that helps engineers find and fix issues earlier.
- Application security leadership and security assurance
- AI-assisted AppSec, triage, threat intelligence, and security workflow automation
- Secure code review across web, API, mobile, cloud, and CI/CD systems
- Public security research, bug bounty learning, and tooling for security teams
- Resume: https://resume.aivault.securityjunky.com/
- LinkedIn: https://www.linkedin.com/in/dark-warlord14/
- Blog: https://securityjunky.com/
- Medium: https://medium.com/@dark_warlord14
- CVENotifier: Custom CVE feed notifier for tracked technologies and products.
- JSScanner: Bash tooling for JavaScript endpoint and secret discovery during recon.
- ffufplus: Automation around ffuf for content discovery workflows.
- Chromium VRP Archive: Searchable archive of disclosed Chromium VRP reports and bounty metadata.
- ZDI Advisories: Searchable Zero Day Initiative advisory dashboard.
- PolyLens: Static market discovery dashboard for Polymarket analytics.
- Unofficial OSWE Exam Notes: Notes and observations from preparing for OSWE.
- OSWE, OffSec Web Expert
- OSCP, OffSec Certified Professional
