About
i'm a software engineer with strong application security background. my main focus is creating unique (and most of the time hacky) solutions for my or my companies' projects. when I felt burned out; I do bug bounty on private programs or give appsec consultancy to startups
Work Experience
BlindID is Turkey's biggest voice chat application. I built entire backend and cloud infrastructure for it. Currently my role is advisory.
tech stack: nodejs,mongodb,redis,lua,k8
I'm CTO of Direcon which is first social audio analytics platform which currently supports Twitter Spaces, Clubhouse and Spotify Greenroom
Coniun is an nft power tool and ecosystem build for nft community.
i was curious about application security and started my appsec career here. after a while I wanted to persue multidisipline so I decided to leave
created various social media related projects for university's needs
Education
just for having degree for 'various reasons'
dropout at second grade
Side Projects
small tool for fetching instagram pictures from given twitter profile
basic math game bot on Twitter
Speaking
Writing
Awards
around 25k bounty rewarded for finding vulnerable integration between their contract and api
found very critical vulnerability on their webrtc gateways, awarded $10k and created a small startup for their pro users (Direcon: Clubhouse and Twitter spaces analytics)
found around 25 vulnerabilities and collected $15k
found multiple critical vulnerabilities at Periscope and some data privacy issues on Twitter.
rewarded around $5k on hackerone
Features
i created a simple twitter streaming bot for automatically reply most common typos in Turkish; that was really fun experience which got attention from press