ABOUT ME

[Skills]

  • Web Security & Bug Bounty: Identified OWASP Top 10 vulnerabilities (XSS, SQLi, SSRF) in web apps via manual testing and automated scans during CTFs and personal bug bounty hunts.
  • Programming & Automation: Wrote Python/Bash/C scripts for network scanning, privilege escalation, and security automation on Linux/Windows.
  • Networking & Infrastructure: Configured VPNs, firewalls, Docker/Kubernetes environments, and used Mininet for network simulations as part of my bachelor’s thesis.
  • Security Analysis: Applied MITRE ATT&CK and Cyber Kill Chain to map attacks and perform privilege escalation/DLL hijacking exercises.
  • LLMs & Emerging Tech: Deployed local LLMs (Ollama, LM Studio), and Google Gemini API for security research, vulnerability analysis, and custom GPT tools.
  • Standards & Methodologies: Used Agile/Kanban for projects and NIST/NIS2-directive/ISO 27001 frameworks for risk assessments and compliance.

My name is Lucian, also known as “0xLuk3,” a cybersecurity professional and upcoming B.Sc. Cyber Security graduate (2026). My passion lies at the intersection of offensive security, technical risk analysis, and Web Application security. My academic focus has been on critical infrastructure and vulnerabilities in communication protocols such as GOOSE and Sampled Values. My bachelor’s thesis explores Industrial Control Systems (ICS), OT environments, and digital substations, analyzing protocols like SV, and GOOSE to detect False Data Injection attacks.

When I’m not auditing code or analyzing protocol anomalies, I compete in CTFs, write technical blog posts, experiment with automated web frameworks, and build tools and Python automation for threat intelligence and defensive workflows. Some of my recent work includes:

NVD Obsidian Scraper:  An automated pipeline that dynamically pulls and parses live National Vulnerability Database (NVD) data directly into an Obsidian vault for seamless local threat modeling.
Hacker News Intel Aggregator: A tailored OSINT/threat-feed automation tool to monitor emerging tech and security trends.
Password Security Validator: A Python-based cryptographic check tool designed to evaluate credential strength and exposure.

[Tools and Frameworks]

[Infrastructure & Containerization]

[]

[Frameworks & Standars]

COBIT, ITIL, ISO 27001, NIST,

 
Linkedin Medium Tumblr Github