Omid

Background

I started in bug bounty programs, spending years hunting vulnerabilities across public and private platforms. That grind shaped how I think — find edge cases that scanners miss, chain low-severity issues into real impact, and communicate findings clearly.

Over time that evolved into full offensive security work. I've reported 15+ critical and high-severity findings across web applications, Active Directory environments, cloud infrastructure, and mobile platforms. Every engagement reinforces the same lesson: the most dangerous vulnerabilities aren't the most complex — they're the ones hiding in assumptions.

Approach

I don't chase CVEs or spray automated scanners. I work methodically — map the attack surface, understand the business logic, and probe the gaps between components. Most of my best findings came from asking "what if this doesn't work the way they expect?" and following that thread.

Why I Publish

The offensive security community runs on shared knowledge. Every writeup I publish is someone else's shortcut. Every technique I document is a building block for the next researcher. If a detail would have saved me time, it goes in the post.

Connect

Find me on GitHub for tools and experiments, or on X for shorter notes and research updates.