Skip to content
View nxenon's full-sized avatar
🖤
127.0.0.54
🖤
127.0.0.54
149 followers · 26 following

Achievements

Achievement: Starstruckx2Achievement: QuickdrawAchievement: Pull Sharkx2

Achievements

Achievement: Starstruckx2Achievement: QuickdrawAchievement: Pull Sharkx2

Block or report nxenon

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
nxenon/README.md

Amin (Xenon)

Application Security Engineer | DevSecOps | Web Security

About

Application Security Engineer with 5+ years of experience in security assessment, code review, and web application testing.

Focused on integrating security into the software development lifecycle through DevSecOps practices, automation, and secure architecture design.

Current Focus

  • Designing and implementing DevSecOps pipelines
  • Automating security testing in CI/CD environments
  • Improving secure coding practices across development teams
  • Researching modern web vulnerabilities and attack techniques

Skills

Security

  • Web Application Security Testing (Pentest)
  • Code Review (SAST)
  • Dynamic Analysis (DAST)
  • Threat Modeling

DevSecOps

  • CI/CD Security Integration
  • Security Automation
  • Pipeline Hardening

Languages

  • Python
  • JavaScript
  • Golang

Latest Research

visit aminnasiri.com

Languages

  • English (IELTS 6.5, Duolingo 110)
  • German (B2)

Contact

email: nasiri.aminm@gmail.com

Status

Pinned Loading

  1. grpc-pentest-suite grpc-pentest-suite Public

    gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications (Official BApp Extension Available)

    Python 249 21

  2. h2spacex h2spacex Public

    HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks

    Python 219 16

  3. DevSecOps DevSecOps Public

    ♾️ Collection of DevSecOps Notes + Resources + Courses + Tools

    Python 70 7

  4. cve-2023-44487 cve-2023-44487 Public

    Examples for Implementing cve-2023-44487 ( HTTP/2 Rapid Reset Attack ) Concept

    Python 14 1

  5. grpc-ecosystem/awesome-grpc grpc-ecosystem/awesome-grpc Public

    A curated list of useful resources for gRPC

    8.3k 604

  6. HackTricks-wiki/hacktricks HackTricks-wiki/hacktricks Public

    Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

    CSS 11.1k 3k