Security consultant, toolmaker, and Managing Director at Aegis Cyber
I help teams find and fix security issues across web applications, blockchain systems, infrastructure, and compliance-heavy environments. My work sits close to real-world attack paths: offensive security, secure design reviews, tooling, and clear reporting that engineering teams can act on.
Outside client work, I build practical security tools used by the community, including Burp Suite extensions and WireSpy, which has been featured by Pentester Academy.
| Focus | Offensive security, blockchain security, pentesting, compliance |
| Experience | 10+ years across banking, fintech, government, and high-risk systems |
| Certifications | OSCP, OSWE, CREST, Black Hat trainings, and more |
| Company | Aegis Cyber, UK |
BurpGPT is a Burp Suite extension that brought LLM-assisted passive analysis into web security testing workflows early, before this became a common pattern in offensive tooling. It remains one of my most widely used public projects and reflects how I like to work: applying emerging technology where it creates practical security value.
| Area | Work |
|---|---|
| Offensive security | Web, API, infrastructure, and cloud-oriented assessments |
| Blockchain security | Smart contract and protocol review, threat modelling, exploit analysis |
| Security tooling | Burp Suite plugins, research utilities, automation, offensive workflows |
| Advisory | Clear technical guidance for modern teams handling sensitive systems |
Selected certifications. More available in the credential wallet.
Selected from public repositories and day-to-day security work. More available across client work, research, and private tooling.
"The net is vast and infinite."
Ghost in the Shell