Formal education
2022 - 2022 | Postgraduate degree | Ethical Hacking and Cyber Security, UNICIV |
2019 - 2022 | Bachelor of Technology | Computer Systems Networking, IFRN |
2018 - 2019 | Certificate program | Electronics, IMD |
2015 - 2018 | Certificate program | Informatics, IFRN |
Professional experience
[2021 - Present] Cyber Security Consultant & Instructor - Daryus Consultoria e Treinamento
- Penetration testing in web applications, infrastructures and mobile applications.
- Reverse engineering (PE and APK).
- Computer forensics, cloud computing audits, secure development, red team exercises,
phishing campaigns, critical systems audit. - Instructor of web application security, secure programming and ethical hacking courses.
- Main contents: OWASP Top 10, OWASP Secure Coding Practices, OWASP Proactive Controls,
OWASP API Security, SAST, DAST, SCA, DevOps, DevSecOps, and threat modeling.
[2016 - 2022] Researcher, R&D Software Developer, and Tutor - Federal Institute of Rio Grande do Norte
- Main programming languages: Java and Python.
- Worked in the fields of information security, computer vision and image processing.
- Subtopics of interest: malware analysis and detection, SDN, and MTD.
- Published research papers in multiple conferences and journals.
- Worked as operating systems tutor (2021 - 2022).
- Worked as algorithms tutor (2017).
- Developed a phishing detection tool using deep learning.
- Developed an ALPR application for embedded hardware (with patent application).
- Developed an OCR application.
- Developed a deep learning face recognition application and API.
- Other technologies: OpenCV, dlib, REST, Flask, MySQL, RFID.
[2020 - 2021] Back-end Developer - SutHub
- Main programming language: Python.
- Developed multiple Robotic Process Automation (RPA) tools.
- Performed Static Application Security Testing (SAST) in the core system.
- Other technologies: Selenium, AWS (EC2, CloudWatch, and S3), MySQL.
[2018 - 2019] Information Security Analyst - Actions Security
- Main programming languages: Python and C.
- Contributed to the development of a Web Application Firewall (WAF).
- Worked with the Elastic Stack, Docker containers and reverse proxies.
- Implanted an OpenStack infrastructure.
- Executed penetration tests in web applications.
- Other tools and technologies: OWASP Top 10, AWS, OpenStack, ModSecurity, Linux.
Research interests
Information Security
Privacy
Malware Analysis
Software-Defined Networking
Artificial Intelligence
Certifications
Certified Ethical Hacker (CEH) | EC-Council | Credential ID: ECC8169403257 |
Ethical Hacking Foundation | EXIN | Credential ID: 6382379.20813916 |
Secure Programming Foundation | EXIN | Credential ID: 6382379.20811383 |
Linux+ | CompTIA | Credential ID: 9BSTQ4TM5LEE1GKT |
LPIC-1 | Linux Professional Institute | Credential ID: LPI000393801 |
Skills
- Languages:
Portuguese (Native)
English (Advanced level)
French (Basic level)
Norwegian (Basic level)
- Programming languages:
C
Python
Java
- Other:
- Penetration Testing, OWASP Top 10, Linux Administration, Reverse Engineering, AWS, Git, Docker, Elastic Stack, Flask, REST.
Honors & Awards
2022 | Academic Honors Diploma |
2022 | Distinguished Paper Award, XL SBRC |
2019 | CVE-2019-7634 |
2018 | Capture The Wave (CTW/CTF) Champion |
Patents & Software
BR 10 2018 015493 1 | Patent | Embedded System for Automatic License Plate Recognition |
BR 51 2019 000141 9 | Software | NAVI Face Recognition API |
BR 51 2019 000143 5 | Software | NAVI RPi Face Recognition |
BR 51 2019 000144 3 | Software | NAVI-ALPR |
BR 51 2019 000140 0 | Software | Embedded System for Rainfall Measurement and SNMP Management |
BR 51 2018 000086 0 | Software | OCR-NAVI |