Pen tester simulating black-box attacks on protocol infrastructure, admin interfaces, and key management flows.
Skills:
-
Web3 Pen Testing
-
L1/L2 Access Control Bypass
-
Session Hijack Simulations
-
Protocol Layer Red Team Ops
Experience:
-
Ran penetration tests for Web3 custody providers and DAOs
-
Focused on breaking wallet backup flows, session auth, and hidden admin APIs
Achievements:
-
Discovered admin endpoint exposure in L2 rollup before public launch
-
Built pen test checklist tailored to protocol + wallet interfaces
-
Helped DAO implement rotating access review schedule