whoami - Berk Can Geyikci

4+ year experienced offensive cyber security specialist. At his first job, worked 2 years on Barikat Cyber Security Turkey as consultant. In this time period, involved with 100 different on-field or remote security projects to the both multinational and domestic companies belong to various industries. After that, Berk worked in Turkey's biggest ISP company called Turk Telecom A.S.

Berk was selected to speak under the topic of Finding Hidden Gems in Temporary Mail Services in Recon Village at DEFCON 31. Currently, he is a full-time consultant at Secarma Ltd. Berk also Core Member in Cobalt.io and Red Team Member in Synack Red Team.

Certifications

•  OSWE - Offensive Security Web Expert
  
•  CREST CRT - CREST Registered Penetration Tester
  
•  CREST CPSA - CREST Practitioner Security Analyst
  
•  eCPTXv2 - eLearnSecurity Certified Penetration Tester eXtreme
  
•  OSCP - Offensive Security Certified Professional
  
•  OSWP - Offensive Security Wireless Professional
  
•  eWPTXv2 - Web application Penetration Tester eXtreme
  
•  CRTP - Certified Red Team Professional
  
•  eMAPT - Mobile Application Penetration Tester
  
•  CLF-C01 - AWS Certified Cloud Practitioner
  
•  TSE - TSE Senior Penetration Testing Specialist
  
  
  

CVE

CVE 2021-41570
Company: Veritas
References;

• https://www.veritas.com/content/support/en_US/security/VTS22-007
• https://nvd.nist.gov/vuln/detail/CVE-2021-41570
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-41570

Bug Bounty

Thanks Received
AT&T
Starbucks
Clario
Omise

Disclosed Reports

• https://hackerone.com/reports/1066410

Usefull Links

• https://br33z3.github.io/assets/images/AD_Pentest_MindMap.svg
  Published By orange-cyberdefense