hey, I'm Pflash 👋

I'am, a cyber security researcher driven by a passion for safeguarding digital landscapes. Specializing in advanced threat detection and incident response, I am dedicated to developing innovative solutions that protect organizations from evolving cyber threats. With a commitment to continuous learning and collaboration, I strive to contribute to a secure and resilient digital environment.

Me speaking on stage at React Summit about the future of Next.js

Me, Lydia, and Delba filming the Next.js Conf keynote

Me standing on stage at Reactathon delivering the keynote

Me standing on stage at SmashingConf giving a talk about my optimism for the web

Me and Guillermo Rauch on stage for Vercel Ship, answering questions from the Next.js community

My badge on top of a pile of badges from a Vercel meetup we held

I create educational content for cybersecurity professionals and developers, teaching them about penetration testing, threat analysis, secure coding, and the latest in cybersecurity trends. My content comes in various forms: detailed blog posts, informative videos, insightful tweets, engaging conference talks, and interactive workshops. You can explore some of my favorite resources below.

@PflashPunk

@pflash0x0punk

Over the past decade, I've shared insights on my blog and newsletter, striving to keep the content straightforward and engaging. I write about the technologies that captivate me and my journey in the cybersecurity field. Through this, I aim to share valuable knowledge and foster growth within the community.

Set Up a Private Tor Exit Relay

SSRF via FFmpeg HLS processing

How PayPal helped me to generate XSS

I specialize in uncovering vulnerabilities and enhancing digital defenses as a dedicated cybersecurity researcher and bug bounty hunter.

I've collaborated with and advised companies on cybersecurity strategies, vulnerability assessments, penetration testing, secure software development, and fostering a culture of security awareness.