Greater Izmir
I'm an engineer from Turkey, who is interested with biotechnology, computer science and digital gaming. I'm passionate about learning since my early childhood and can't stop getting amazed from each new stuff I learn each day. I really love finding security issues and currently author of 43 CVEs, acknowledged by companies like Microsoft, eBay, Valve and many others for reporting security issues found on their assets.
• Conducted security testing on Morgan Stanley's internal and external assets, documenting vulnerabilities and providing detailed executive summaries for in-house development applications. • Collaborated with teams to suggest remediation strategies, assign risk ratings, and maintain high security standards for Morgan Stanley.
• Released advisories, patches, and proof of concepts for vulnerabilities since 1999. • Helped companies like ICQ, BigFoot, and NetZero fix critical issues, impacting millions of users. • Authored 43 CVEs and assisted government departments and universities with security challenges.
In January 2022, I was honored to be selected as a Circle of Trust Member for the Synack Red Team. In this role, I provided valuable support to researchers by addressing ongoing issues, offering suggestions for improvements, and reviewing upcoming changes to the platform.
• Achieved Acropolis OLYMPIAN status for 2025-2026 as of 2025/11 • Achieved Acropolis HERO status for 2025-2026 as of 2025/08 • Participated Live Hacking Event on Hong Kong and reported 10 SQL Injection issues with other critical findings on 2025/05 • Achieved Acropolis OLYMPIAN status for 2024-2025 as of 2025/03 • Achieved SRT Legend Status as of 2025/01 by reaching 1M$ lifetime reward and finding 250+ CVSS 9.0 issues • Achieved Acropolis HERO status for 2024-2025 as of 2024/07 • Recognized as Mentor of the Year for 2023-2024 which is awarded for top performance as mentor for other Synack Red Team members • Achieved Acropolis OLYMPIAN status for 2023-2024 as of 2024/05 • Achieved Acropolis HERO status for 2023-2024 as of 2023/11 • Achieved Acropolis HERO status for 2022-2023 as of 2022/10 • Achieved Acropolis TITAN status for 2021-2022 as of 2022/06 • Achieved Acropolis OLYMPIAN status for 2021-2022 as of 2022/03 • Achieved Acropolis HERO status for 2021-2022 as of 2021/08 • Recognized as Rookie of the Year for 2020-2021 which is awarded for most impactful new member on the team. • Achieved Acropolis TITAN status for 2020-2021 as of 2021/06 • Achieved Acropolis OLYMPIAN status for 2020-2021 as of 2021/02 • Achieved Acropolis HERO status for 2020-2021 as of 2020/12 • SRT of the Month: 2020/09 • Participated on SYNC Meetup, an exclusive online event for Synack Red Team members and shared my experience for how to succeed on first year with fellow SRT members. • Reached level 5, which is highest tier for researchers on Synack in less than 5 months. • Uncovered dozens of critical issues like Remote Code Executions to SQL Injections on Fortune 500 companies.
In my role as a Hacker Advisory Board Member at Bugcrowd, I provided valuable support to researchers by addressing ongoing issues and offering suggestions for improvements. • Reviewed upcoming changes to the platform to ensure a seamless experience for all users.
• Conducted on-demand penetration testing for various companies, uncovering critical issues missed during internal testing. • Collaborated with specific programs to enhance cybersecurity measures and mitigate potential risks. • Identified vulnerabilities and provided actionable recommendations to improve overall security posture.
My bugcrowd profile: http://bugcrowd.com/nukedx • MVP for Q1 2020 • MVP for Q4 2020 • MVP for Q1 2021 • MVP for Q2 2021 • Winner of the Team Hunt 2021 event with fellow researchers (bsysop, restricted, sw33tlie, dogwhohacks and P3t3r_R4bb1t)
• Conducted penetration testing on internal and external assets of Indeed, identifying vulnerabilities and providing detailed reports. • Produced executive summaries with risk ratings and remediation suggestions for management review. • Collaborated with cross-functional teams to ensure security measures were implemented effectively.