Contact information

The job seeker has entered a phone number and email.

You can get this candidate's contact information from https://www.work.ua/resumes/7219840/

Education

Черкасский государственный технологический университет

Компьютерный инженер, Черкассы
Higher, from 2017 to 2021 (4 years)

Additional education and certificates

Advance Bug Bounty Hunting & Penetration Testing Course 2021

2021, 1 месяц

Android Penetration Testing

2021, 1 месяц

CISCO | Cybersecurity Essentials

2021, 1 месяц

CISCO | Introduction to Cybersecurity

2021, 1 месяц

CISCO | Introduction to IoT

2021, 1 месяц

CISCO | Partner: NDG Linux Unhatched

2021, 1 месяц

Complete Android Ethical Hacking Practical Course C|AEHP

2021, 1 месяц

Complete Google Hacking Practical Course C|GHPC

2021, 1 месяц

Complete Web Application Penetration Testing Practical C|WAPT

2021, 1 месяц

Cyber Security for Small Digital Business Owners

2021, 1 месяц

Learn Hacked Credit & Debit Card Recovery

2021, 1 месяц

Pentesting & Securing Web Applications (Ethical Hacking)

2021, 1 месяц

TOTAL: CompTIA A+ Certification (220-1001)

2021, 1 месяц

TOTAL: CompTIA Network+ Certification (N10-007)

2021, 1 месяц

TOTAL: CompTIA Security+ Certification (SY0-501)

2021, 1 месяц

Этичный хакинг с Metasploit

2021, 1 месяц

Защита информации в электронных платежных системах

2021, 1 месяц

Language proficiencies

• English — average
• Russian — fluent
• Ukrainian — fluent

Additional information

SKILLS
Networks: TCP/IP, TLS/SSL, cryptography/hashing, attacks on OSI layers & defending
Operating systems: Windows, Linux (Kali, Ubuntu), Android
Programming languages: basic Bash/Python/SQL/HTML/JS/NodeJS (read code & write scripts in bash shelling to automate vulnerability detection)
Databases: MySQL, PostgreSQL (CRUD)
Audit: Reconnaissance, fuzzing, vulnerability search, techniques & exploitation OWASP Web/Mobile/API 10, Personal Top100, incident response policy on networks, WAF, IDS/IPS, firewall, ways to bypass protection
Risks: Security risks in network, web/mobile(android)/api applications, threats & techniques for server / client attacks (SQL/NoSQL injection, XSS, XXE, XSRF, RCE, LFI/RFI, IDOR, CVE & others)
Software testing - testing theory, manual/automatic vulnerability testing of web services, bug reports, API testing, checklists, SLC/SDLC, REST/SOAP
Familiarity with PCI-DSS,GDPR,PTES standards & techniques

TECHNICAL SKILLS
Computer network/WI-FI auditing - Nmap(nse)/Nessus, Lynis, OpenVAS, Metasploit, Wireshark/tcpdump, aircrack-ng, wifite2
SAST/DAST/MAST/SCA utilities - Burp Suite & Burp Bounty/OWASP ZAP, wapiti, nuclei/jaeles, Acunetix/Netsparker, sqlmap/nosqlmap, MobSf, apkleaks, Drozer, jd-gui, apktool, ADB, njsscan, sonarqube, snyk, dependency checker by owasp & others bug bounty tools for web/mobile auditing
Software testing (basic postman/Jmeter/Jira)
AWS/GCP cloud technologies & cloud audit (s3buckets misconfing, ec2 audit, iamenum)
Web/Android application & API auditing
Container & cluster auditing (docker-bench-audit, gorsair, trivy, kubehunter)

LANGUAGES
English - intermediate, Ukrainian – native, Russian – native