Skip to content

tanzz1337/tanzz1337

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

7 Commits
README.md
README.md
Β 
Β 

Repository files navigation

πŸ‘‹ Hi, I'm Sultan Raja Marlindo

Typing SVG

LinkedIn Twitter HackTheBox TryHackMe

🎯 About Me

Passionate cybersecurity professional specializing in penetration testing and vulnerability assessment. Active CTF player and security researcher dedicated to making the digital world safer.

$ whoami
> Penetration Tester | CTF Player | Security Researcher
> "Breaking things to make them stronger"
  • πŸ” Specializing in Web Application & Network Penetration Testing
  • 🚩 Active CTF player on HackTheBox, TryHackMe, and CTFtime
  • πŸ› Bug bounty hunter finding vulnerabilities to help secure applications
  • πŸŽ“ Constantly learning and sharing cybersecurity knowledge
  • πŸ’» IT enthusiast exploring the latest security tools and techniques

Berpengalaman pada pengujian aplikasi web: authentication, authorization, session management, input validation, file upload, dan API security. Berminat pada bug hunting (responsible disclosure), threat modeling, dan penguatan pipeline CI/CD terhadap secret leakage. Prefer bekerja di lingkungan yang aman/terisolasi (Docker/VM) dan selalu mengikuti etika pen-test.

πŸ› οΈ Keahlian Utama

  • Web App Testing: OWASP Top 10, XSS, SQLi, CSRF, IDOR, SSRF, RCE (analisis & mitigasi)
  • Authentication & Authz: session fixation, JWT, password flows, SSO assessment
  • API Security: API endpoints audit, rate limiting, token misuse, IDOR pada API
  • Recon & Scanning: passive/active recon, subdomain enumeration, dirb, fuzzing
  • Forensics & Remediation: log analysis, incident triage, secret rotation
  • Coding/Automation: scripting untuk PoC & scanner (Python / Bash), CI pipelines

🧰 Tools Favorit

  • Burp Suite (Professional / Community workflows)
  • OWASP ZAP, Nmap, Nikto
  • sqlmap, ffuf, dirbuster, wfuzz
  • Gitleaks, TruffleHog, git-secrets
  • Docker, Ghidra (untuk reverse engineering sederhana), Wireshark
  • Python (requests, BeautifulSoup), Node.js (simple tooling)

πŸ› οΈ Technical Arsenal

Penetration Testing & Red Team

Kali Linux Burp Suite Metasploit Wireshark Nmap

Programming & Scripting

Python Bash JavaScript PHP PowerShell

Security Domains

  • 🌐 Web Application Security (OWASP Top 10)
  • πŸ”’ Network Security & Infrastructure Testing
  • 🎭 Social Engineering & OSINT
  • πŸ”“ Cryptography & Password Cracking
  • πŸ“± Mobile Application Security
  • ☁️ Cloud Security (AWS, Azure)

πŸ’‘ Currently Learning

  • πŸ” Advanced exploitation techniques
  • ☁️ Cloud security and container security
  • πŸ€– AI/ML security and adversarial attacks
  • πŸ“± iOS/Android application security

Profile Views

"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards." - Gene Spafford

πŸ“Š GitHub Stats

GitHub Stats

Top Langs

GitHub Streak

About

Hi,Selamat Datang Di Profil Github Saya

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors