// ABOUT
One researcher, building things that are actually useful.
Xocipher is an independent security research project, not an agency, not a team.
// BACKGROUND
Independent security researcher, red teamer, bug bounty hunter.
I'm an independent security researcher working across bug bounty programs on platforms like Bugcrowd and HackerOne, with a background in offensive security and cyber investigation. Xocipher is where that hands-on research turns into software: the recon pipelines and reporting workflows I built for my own work, packaged as tools other researchers can run themselves.
Everything here is early; this is a soft launch while things get properly set up. If you want to hear when a tool ships, or just want to get in touch, use the contact page.
- Hands-on offensive security background
- Active on Bugcrowd and HackerOne
- Tools built from real research workflows, not speculation
- Currently building in public; more coming soon
// FOCUS AREAS
Where the work concentrates.
Offensive Security
Recon, enumeration, and vulnerability discovery across authorized web and API targets.
Bug Bounty Research
Ongoing work across public and private programs, reported through Bugcrowd and HackerOne.
Cyber Investigation
Tracing infrastructure, attribution, and digital footprints as part of broader security research.