Vulnerability Lab - Research Team Member Review

A listing of our public working members. Feel free to contact us ... new ideas, creative projects, events, audits/penetrationtests, bugbounty projects or famous wargames/contests/challenges. The website is a short review of some public lab members of the internal team.

Public Vulnerability Research Team

Benjamin Kunz M.(28) is active as a penetration tester and security analyst for private and public security firms, hosting entities, banks, isp(telecom) and ips. His specialties are security checks(penetrationtests) on services, software, applications, malware analysis, underground economy, government protection or cyberwar analysis, reverse engineering, lectures or presentations and workshops about IT Security. During his work as a penetration tester and vulnerability researcher, many open- or closed source applications, software and services were formed more secure. In 1997, Benjamin K.M. founded a non-commercial and independent security research group called, "Global Evolution - Security Research Group" which is still active today. From 2010 to 2011, Benjamin M. and Pim C. (Research Team) identified over 300 zero day vulnerabilities in well known products from companies such as DELL, Barracuda, Mozilla, Kaspersky, McAfee, Google, Fortigate, Opera, Cyberoam, Safari, Endian, Skype, Asterisk, Astaro, PBX & SonicWall. In 2010 he founded the company "Evolution Security". After the firm's establishment arose the Vulnerability Lab as the legal european initiative for vulnerability researchers, analysts, penetration testers, and serious hacker groups. Ben is also the leader of the Contest + VLab Research Team. He have a lot of stable references by solved events, interviews or contests/wargames like ePost SecCup, SCS2, 27c3, EH2008, Har2009, Da-op3n & he provids exclusive zero-day exploitation sessions/releases.

Benjamin K. M.

[ WWW ] [ EMAIL ] [ PGP ]

 

Chokri B.A. (22) is a student in programming and network administration at the University of Technology and Computer Science in Tunis(Tunesia). Chokri has been worked in the security field since 2007/2008 & works very active on the arabic security scene. Chokri is specialised on in the field of PenetrationTesting, Vulnerability Research, Underground-Economy & Crypto-Analyses. He is also very talented on new exploitation technics, de/encryption & web-service hacking. C/C++, Perl & VB.NET HTML, JS & PHP Vulnerability Analyses & Research He joined the Vulnerability-Lab Research Team in 2009 & is now an active stable member out of the new/free tunesian security scene. He is also a part of the Contest Team & navigates the stable arabish contest team together with Mohammed. Chokri has solved & won several wargaming contests like the Tunis Security Days Contest by I&M(Gov) in 2009/2011. Chokri discovered 2011 multiple vulnerabilities on famous websites & services like TRUSTe Seals , DIS INT Banking , Xero , IAEA, La Poste FR, USGS Gov & co.

Chokri B.A.

[ WWW ] [ EMAIL ] [ PGP ]

 

Pim J. F.P. Campers (24) has worked around five years in the IT Security sector. It began as a hobby, but after high school, he decided to expand his experience in the area of IT Security. His specialties are security checks on web applications, server and client applications, underground economy, bypass/crack filters or walls & risk/threat analysis. He currently works closely with academia and high class software manufacturers and companies. Pim has joined the "Global Evolution" Research Team 2007. From 2010 to 2011, Pim J.C. and Benjamin K.M. (Research Team) identified over 300 zero day vulnerabilities in well known products from companies such as DELL, Barracuda, Mozilla, Kaspersky, McAfee, Google, Fortigate, Opera, Cyberoam, Safari, Endian, Skype, Asterisk, Astaro, PBX & SonicWall. In 2010 he founded the company "Evolution Security" with Benjamin K.M.. After the firm's establishment arose the european Vulnerability Lab as the legal european initiative for vulnerability researchers, analysts, penetration testers, and serious hacker groups. Pim is also the co-leader of the european Wargaming + Vulnerability-Lab Research Team & have a lot of stable references by solved events or or contests/wargames like ePost SecCup, SCS2, 27c3, EH2008, Har2009, Da-op3n & he provids exclusive zero-day exploitation sessions/releases.

Pim J.F.P. C.

[ WWW ] [ EMAIL ] [ PGP ]

 

Aditya Gupta (21) is a security researcher, student and web application penetrationtester for public companies and famous vendor websites. His specialties are security checks(penetrationtests) on web applications, underground economy, mobile malware or analyses, web-server security. In June 2011, Aditya was invited as speaker to the famous indian clubhack security conference & has also been a part of the Defcon Chennai. He has also a strong connection as technical exchange with the well known KIIT university networks from india. Mobile Exploitation, Mobile Malware & Code Analysis Web Application Penetration Tests PHP, JS & SQL He joined the Evolution Security Research Team in may 2011 & is a very active lab member. He is also a part of the contest team. Aditya discovered 2010-2011 multiple 0-day vulnerabilities in government vendor websites or web-application services like Skype, Apple, Google, Harvard, MIT & Orcale. In January 2012 Aditya G. published multiple articles & videos on different famous indian news & security magazines. In March 2012 Aditya got listed for different vulnerabilities on the hall of fame of Google & Apple.

Aditya G.

[ WWW ] [ EMAIL ] [ PGP ]

 

Julien Ahrens (26) is currently working as a system engineer in the area of networking and security at a medium sized service provider in Germany and therefor spends most of his time on switch, router and firewall shells. Julien is interested in general IT Security topics for a few years now, but is quite new to the active vulnerability research scene. He is going to dig deeper into native application penetration testing, reverse engineering and web-based vulnerabilities. VMware / Linux Enthusiast Networking (Routing, Switching, Firewalling) VB.Net, c++, Assembler, PHP/SQL, Python He joined the Vulnerability Laboratory Research Team in January 2012. He is also a part of the contest team. Julien discovered 2011/12 multiple 0-day buffer overflow vulnerabilities in famous software products like Socusoft, Macro Toolworks Framework, GPS MapEdit,WMA-MP3 Converter, Turbo File Browser, Enterasys Switch, BulletProof FTP, Crystal Office Systems & Web xPhone or websites like SUSE.

Julien A.

[ WWW ] [ EMAIL ] [ PGP ]

 

Dev Kar (24) is currently student (Electronics) on the Technical University of Electronics in India. He mostly focus on security programs or topics & secure web-development. Dev Kar is well known on the indian hacker scene after several security workshops & projects. C++, Perl & Python Wireless & Web Penetration Testing R&D Projects, PHP/SQL He joined the Vulnerability Laboratory Research Team in January 2012. He is also a part of the new contest team. Subho discovered 2011/12 multiple 0-day vulnerabilities in famous web services like Apple & Google. Dev Kar is the Co-Founder of XY Security. He is also listen on the Hall of Fame of Google Security & Apple Security Community with Aditya Gupta and Subho Halder.

Dev K.

[ WWW ] [ EMAIL ] [ PGP ]

 

Alexander Fuchs (22) is it-system electronics. He started in 2010 finding security vulnerabilites in web applications. He is specialised on in the field of web application penetration testing, vulnerability research & security white papers or videos. He is also reporting security issues in web-applications, server- and client-applications or vendor websites. C/C++ JS, PHP & SQL Web Application Penetration Tests He joined the Evolution Security Research Team in 2010 & is stable member. He is also a part of the contest team. Alex discovered 2011 multiple high priority vulnerabilities on vendor website web-applications like RTL, Prosieben, La Poste FR. In march 2012 Alex got listed on the official Apple Security - Hall of Fame. In autumn 2011 Alexander had several interviews because of his famous discovered vulnerabilities on web infrastructures of the whitehouse & nato rto/otan computer/webserver system.

Alexander F.

[ WWW ] [ EMAIL ] [ PGP ]

 

Ibrahim M. El-Sayed (20) solved in 2012 his Bachelor of Science, in Computer Engineering on the American University of Cairo (Egypt). He started in 2007 finding security vulnerabilites in government web applications & military services. He is specialised on the field of web application penetration testing, vulnerability research & security videos. He is also reporting security issues in web-applications like content management systems, shops, control panels or famous software. Web Application Penetration Tests MacOs, Linux and Windows Server Administration C & C++ Object In 2011 to participate as final team on the ACM-ICPC International Collegiate Programming Contest. In 2011 he also solved successfully the Cairo Security Camp. He joined the VL Security Research Team in March 2012 & is stable member of the team. He is also a part of the new contest team. The Storm discovered 2011 Q2-3 multiple critical severity vulnerabilities on web-applications like landshop, jpm article, b2evolution.

Ibrahim M. E-S.

[ WWW ] [ EMAIL ] [ PGP ]

 

 

Subho Halder (24) is currently student (Information Technologie) on a well known University in India. Currently he is pursuing Bachelors of Technology in Electronics and Telecommunication Engineering. He have worked in various micro-controller based projects and also participated in many robotics based competition. Subho is going to deeper into native web applaince penetration testing, security conference talks, training or workshops and web penetration testing. VMware / Linux Web Penetration Testing PHP, JS & ASP He joined the Vulnerability Laboratory Research Team in January 2012. He is also a part of the new contest team. Subho discovered 2011/12 multiple 0-day vulnerabilities in famous web services like Apple & Google. He is also listen on the Hall of Fame of Google Security & Apple Security Community with Aditya Gupta and Dev Kar.

Subho H.

[ WWW ] [ EMAIL ] [ PGP ]

 

Ivan Montilla Miralles (23) is a security analyst who has been into the security field actively since 2005. He studies Computer Science in the New Professions Institute of Venezuela, and works as a Systems Manager for a production company. He also works for "Global Evolution" Research Team, moderating the contents of the Vulnerability-Lab. He enjoys reading about technology topics, specially those related with distributed computing and operative systems. Ivan is specialised on Underground Economy, Vulnerability Research, Vulnerability Analyses, Dokumentation & Management Processes. Ivan M. is a ex- co-admin & moderator of the famous Blackhat Forums but our portal is not connected with the BHF project. He has joined the Evolution Security Research Team 2004 & is a trusted stable Researcher. He is also active in the private internal Contest Team & has solved several Contests like "Create The Future" with the ESDP Simulation Project. He is currently learning the usage of Adobe Flex with Actionscript and MXML for the creation of Rich Internet Applications (RIA). He also does work with Qooxdoo, JS, Delphi, Basic & PHP.

Ivan M.M.

[ WWW ] [ EMAIL ] [ PGP ]

 

Mohd. Shadab Siddiqui (23) is a security researcher, student , security analyst and penetration tester for public companies and famous vendor websites. Shadab solved successful the following certifications CEH, ECSA /LPT. His specialties are security checks(security analysis and penetration testing) on web applications , websites, web-server security. In the last 2 years has written 3 research papers which got published internationally in IEEE and IJCSIS Magazine Journal. Web Penetration Testing Workshops, Presentations & Security Analysis PHP, JS & ASP Shadab join the Vulnerability-Lab Team in February 2012. In the last Month he discovered vulnerabilities in many high profile websites like Redhat, Honeywell, Pinterest, Apple, Shell, HCL, Telecom and many more. Shadab has also joined the new vulnerability laboratory contest team 2012. He also work in cooperation with an famous Indian Cyber Crime Department on cases like ATM Fraud, Malware, Bank or ISP Incidents. In march 2012 Shadab S. discovered multiple major sql-vulnerabilities on different public Oracle Corporation web application services.

Shadab S.

[ WWW ] [ EMAIL ] [ PGP ]

 

Karim Boudra (24) is security consultant & expert in programming and penetration tests at the DataProtect(Morocco). Karim has been worked in the security field since 2009. Karim Boudra is specialised on in the field of PenetrationTesting, Vulnerability Research, Reverse Engeneering & Underground-Economy. He is also very talented on new exploitation technics, math algorythms, hardware reverse engeneering & service or application audits. C#, ASM, Java & Python PHP, HTML & ASP & JavaScript Vulnerability Research & Exploitation Analysis He joined the Vulnerability-Lab Research Team in 2012 & is now an active stable member from the moroccan security scene. He is also a part of the Lab Contest Team. Karim has solved & won several wargaming contests like the JNS2 V2 2012 - Ethical Security Challenge & Morroccan Cyber Security Challenge (MCSC) in 2011. Karim discovered 2011 multiple vulnerabilities on famous websites like Nokia, Apple & web applications vulnerabilities for Visual Studio 2010, Horde, Plesk & Webmail..

Karim B.

[ WWW ] [ EMAIL ] [ PGP ]

 

Sascha Gurko (31) is electronic or creative art designer & student of a famous university near koeln in germany. Sascha is one of the old generation on the hardware hacking sector. He started his work & demonstrations in 2003 & expanded it fast on an international level. In 2009-2011 he visited different art galleries, art/design event shows, presentations & traveled around schweden, moscow, berlin, & usa. Cyber/Electronic Art & Design Micro-Controller Hardware Sascha doesn't belong to any wargaming or research group, but is still a valuable member of the research and development teams. His trustworthy and skillful character compliment his duties and responsibilities that work as a cornerstone for hardware hacking. Sascha is also a well known & respected person on youtube, vimeo & hardware design scene.

Sascha G.

[ WWW ] [ EMAIL ] [ PGP ]

 

Marcel Bernhardt (21) state-certified technical assistant for information technic. He is currently qualified in information processing and computer science and has worked for about 4 years with the internal research team. Marcel had detected/identified a lot of zero day vulnerabilities in the past years with the team. His special skills are electrical engineering, linux server administration, network security, object- & web-programming. C/C++ PHP, HTML, CSS Assembler, Debugging & NASM Web- & Software Penetration Tests Marcel has participated in various Wargaming events such as the Da-Op3n, Easterhegg and is a stable member of the german contest team. He actively secured various big industry company websites and service projects in the last 4 years.

Marcel B.

[ WWW ] [ EMAIL ] [ PGP ]

 

Thomas S. (28) was a judiciary branch worker in a chamber since 2006 and is currently in a scientific field of study. He specializes in lighting, picture, and video production. Thomas is a great and talented graphic designer who has worked with german "Lack Produzenten" on his own successful catalog. Catalogs, Brochures and Magazines Advertising and commercial Logos Modern Art (Graffiti/Abstract) Thomas doesn't belong to any wargaming or research group, but is still a valuable member of the research and development teams. His trustworthy and skillful character compliment his duties and responsibilities that work as a cornerstone for gfx & movies.

Thomas S.

[ WWW ] [ EMAIL ] [ PGP ]