Services
Secure Code Review
Thorough manual review of your application source code to identify security vulnerabilities, logic flaws, and hardening opportunities before they become incidents.
Vulnerability Research
Deep-dive analysis into applications and platforms to discover previously unknown security issues. Responsible disclosure and detailed technical reporting included.
Application Security Consulting
Practical security guidance for development teams. Threat modeling, secure architecture review, and helping your team build security into the development lifecycle.
Bug Bounty Expertise
Years of experience finding and responsibly reporting vulnerabilities across major platforms. Available for private bug bounty programs and security assessments.
About
I'm Mat, an application security professional and bug bounty hunter with more than a decade of software development experience. I specialise in finding vulnerabilities that automated tools miss, through manual code review and creative attack surface analysis.
Ranked in the top 1000 all-time on HackerOne and top 10 on both Wordfence and Patchstack, I bring a practical, attacker's perspective to every engagement.
Research
I write about security research, bug bounty findings, and technical deep-dives on my security blog.