Founder @ VulnHero & Siber Ninja
Creator of Mr.SIP Pro
PhD in Computer Engineering | AI-Driven OffSec, VoIP & AppSec Expert | Speaker @ DEFCON & BlackHat
Cybersecurity researcher, entrepreneur, and offensive security expert with 15+ years of experience delivering advanced penetration testing, vulnerability intelligence, and application security solutions.
I specialize in AI-driven offensive security, VoIP/SIP attack simulation, and advanced penetration testing and red team operations.
I have developed security tools adopted by global enterprises, academia, and the open-source community; contributed to the CVE Program; and delivered talks at DEFCON, BlackHat, Offzone, and other leading security conferences worldwide.
- Offensive Security & Penetration Testing
- VoIP/SIP Security & Attack Simulation
- Application Security & Secure SDLC
- Vulnerability & Exploit Intelligence
- Red Teaming & Adversary Simulation
- AI/ML-Driven Security Automation
Always Free: Monthly CVE & Exploit Insights
Stay informed with monthly updates on vulnerabilities, exploits, and security trends — no registration required.
📩 Subscribe Here — Get free monthly insights on vulnerability & exploit intelligence, trends, and tips.
SIP Security Assessment Framework for VoIP Pentesters. Presented at DEFCON, BlackHat & Offzone.
SIP-Based DDoS Defense Tool.
Automation scripts and frameworks for penetration testing workflows.
- (Submitted) A Deep Dive into the Anatomy of Real-World Caller-ID Spoofing Attacks in Live Financial Call Centers – SCI-Indexed Academic Paper, 2024.
- Blockchain-Based Caller-ID Authentication (BBCA) – IEEE Access, 2024. DOI
- Efficient Mitigation Against SIP-Based DRDoS Attack – MDPI Applied Sciences, 2023. DOI
- A Novel SIP-Based DRDoS Attack & Defense Mechanism – IEEE Access, 2020. DOI
- Novel SIP-Based DDoS Attacks & Defenses – Elsevier Computers & Security, 2016. DOI
- BlackHat MEA 2024 Briefing – Optimizing Port Scanning at Scale with The distribRuted Framework – Riyadh.
- BlackHat MEA 2024 Arsenal – DistribRuted – Distributed Attack Framework (Botnet-as-a-Service) – Riyadh. GitHub
- BlackHat Europe 2024 Arsenal – DistribRuted – Distributed Attack Framework (Botnet-as-a-Service) – London. GitHub
- DEFCON 32 DemoLabs (2024) – DistribRuted – Distributed Attack Framework (Botnet-as-a-Service) – Las Vegas. GitHub
- Securi-Tay 2023 Opening Keynote – My Journey with Mr.SIP Pro – Dundee. Video | Website
- BlackHat USA 2023 Arsenal – AppSecLens: AI-Driven Adaptive Application Risk Ranking
- BlackHat MEA 2022 Briefing – Breaking VoIP Networks and Applications using Mr.SIP Pro – Riyadh.
- DEFCON 28 Main Stage (2020) – Practical SIP Penetration Testing Using Mr.SIP – Video
- OffZone 2019 – Mr.SIP – SIP-Based Offensive Security Framework – Moscow.
- BlackHat Asia 2023 Arsenal – Mr.SIP – SIP-Based Offensive Security Framework – Singapore.
- BlackHat EU 2022 Arsenal – Mr.SIP – SIP-Based Offensive Security Framework – London.
- BlackHat MEA 2022 Arsenal – Mr.SIP – SIP-Based Offensive Security Framework – Riyadh.
- BlackHat EU 2020 Arsenal – Mr.SIP – SIP-Based Offensive Security Framework – London.
- BlackHat EU 2019 Arsenal – Mr.SIP – SIP-Based Offensive Security Framework – London.
- BlackHat USA 2019 Arsenal – Mr.SIP – SIP-Based Offensive Security Framework – Las Vegas.
- BlackHat Asia 2019 Arsenal – Mr.SIP – SIP-Based Offensive Security Framework – Singapore.
- CVE-2020-3122 – Cisco Content Security Management Appliance – Information Disclosure
- CVE-2020-4708 – IBM Security Trusteer Pinpoint Detect – Information Disclosure
- CVE-2020-16283 – Software AG System Management Hub – XSS
- CVE-2020-16284 – Software AG System Management Hub – XSS
- CVE-2020-16285 – JAMF Pro – Information Disclosure
- CVE-2020-16286 – QuickFIX Engine FIXT 1.1 – XSS