n
nomorebreachsec

John

@nomorebreachsec

Security Researcher

India
English, Hindi
About me
We don’t do check-the-box security tests. we break things on purpose so you don’t get breached. NoMoreBreach delivers manual penetration testing, AI-assisted red teaming, API & web security assessments, mobile app pentests, phishing simulations, and deep vulnerability discovery. Our approach is grounded in real attacker TTPs, not noisy scanners, with clear remediation guidance you can act on. Trusted by 45+ orgs to uncover hidden risks before adversaries do. nomorebreach.com... Read more

Skills

n
nomorebreachsec
John
Offline • 

See my services

User Testing
I will do cybersecurity testing for your websites apps apis
From$50 / projectMore details

Work experience

Freelance Security Researcher & Penetration Tester

Independent / Freelance • Freelance

Dec 2021 - Present4 yrs 5 mos

I work as an independent security researcher, focusing on finding real, exploitable vulnerabilities in web applications, APIs, cloud setups, and mobile platforms. Most of my work comes from bug bounty programs and private security assessments for early-stage startups and growing SaaS products. My approach is heavily manual. I spend time understanding how an application actually works, then look for logic flaws, access control issues, authentication weaknesses, IDORs, injection points, and misconfigurations that automated scanners usually miss. I also test how smaller issues can be chained together to create serious impact. For every finding, I provide clear proof of concept, explain the real-world risk in simple terms, and share practical remediation steps that developers can actually implement. The goal is not to generate long reports, but to help teams fix the problems that attackers would realistically exploit.