Hi, I'm Daniel Serbu

Penetration Tester & Security Researcher

Offensive security specialist with expertise in web application testing, cloud security, mobile security, and DevSecOps. Breaking things to make them stronger.

daniel@redteam:~

*Evil-WinRM* PS C:\Users\daniel> whoami /all

[+] User: daniel_serbu

[+] Role: Penetration Tester & Security Researcher

[+] Privileges: SeDebugPrivilege (ENABLED)

*Evil-WinRM* PS C:\Users\daniel> type expertise.txt

Web Application Security | Cloud Pentesting (AWS/Azure/GCP)

Mobile Security (Android/iOS) | Active Directory | DevSecOps | OSINT

*Evil-WinRM* PS C:\Users\daniel> Get-ChildItem certifications\ | Format-Table

eCPPT - Certified Professional Penetration Tester

eMAPT - Mobile Application Penetration Tester

eJPTv1 - Junior Penetration Tester v1

CAPenX - Certified AppSec Pentesting eXpert

CCPenX-AWS - Certified Cloud Pentesting eXpert - AWS

CRTSv2 - Certified Red Team Specialist v2

CELMS - Certified Enterprise Lateral Movement Specialist

CRTA - Certified Red Team Analyst

AD-RTS - Active Directory Red Team Specialist

API-RTA - API Red Team Analyst

MCRTA - Multi-Cloud Red Team Analyst

C-AI/MLPen - Certified AI/ML Pentester

CAPen - Certified AppSec Pentester

C-APIPen - Certified API Pentester

CNPen - Certified Network Pentester

CMPen-Android - Certified Mobile Pentester - Android

CAPT - Certified Android Penetration Tester

CIPT - Certified iOS Penetration Tester

*Evil-WinRM* PS C:\Users\daniel> .\pivot_network.ps1

[+] Network pivot established. Target acquired.

[+] Engagement ready. Let's hunt for vulnerabilities...

About

I'm a security professional specializing in offensive security and penetration testing. My work focuses on identifying vulnerabilities in web applications, APIs, cloud infrastructure, and mobile applications before malicious actors can exploit them.

With a strong foundation in multiple offensive security methodologies and DevSecOps practices, I approach each engagement with a thorough, methodical mindset. I'm passionate about continuous learning, sharing knowledge through detailed writeups, and staying ahead of emerging threats.

I maintain comprehensive resources covering DevSecOps, OSINT, and penetration testing methodologies. Currently focused on web application security, bug bounty hunting, and cloud security across AWS, Azure, and GCP.

Skills

Web Application Security

OWASP Top 10SQL InjectionXSSCSRFSSRFXXEAuth BypassBusiness Logic

Tools & Frameworks

Burp Suite ProCobalt StrikeMetasploitNmapSQLMapNucleiFfufHashcatImpacket

Cloud Security

AWS PentestingAzure SecurityGCP AssessmentIAM AnalysisS3 MisconfigsCloud Forensics

Mobile & API Testing

Android PentestingiOS AssessmentREST APIGraphQLMobile OWASPFrida

DevSecOps

Mobile Hacking Lab

CIPT - Certified iOS Penetration Tester

My Cert Exam Info

Mobile Hacking Lab

Hi, I'm Daniel Serbu

About

Quick Links

LinkedIn Profile

Gitbook - Cybersecurity Resources

GitHub Profile

TryHackMe Profile

AppSec Engineer Profile

SecureFlag Profile

PentesterLab Profile

Pwned Labs Profile

Skills

Web Application Security

Tools & Frameworks

Cloud Security

Mobile & API Testing

DevSecOps

Active Directory & Network

Certifications

eCPPT - Certified Professional Penetration Tester

eMAPT - Mobile Application Penetration Tester

eJPT - Junior Penetration Tester

CAPenX - Certified AppSec Pentesting eXpert

CCPenX-AWS - Certified Cloud Pentesting eXpert - AWS

CRTSv2 - Certified Red Team Specialist v2

CELMS - Enterprise Lateral Movement Specialist

CRTA - Certified Red Team Analyst

AD-RTS - Certified AD Red Team Specialist

API-RTA - Certified API Red Team Analyst

MCRTA - Multi-Cloud Red Team Analyst

C-AI/MLPen - Certified AI/ML Pentester

CAPen - Certified AppSec Pentester

C-APIPen - Certified API Pentester

CNPen - Certified Network Pentester

CMPen-Android - Certified Mobile Pentester - Android

CAPT - Certified Android Penetration Tester

CIPT - Certified iOS Penetration Tester

Experience

Contact