Skip to content
View ismailtsdln's full-sized avatar
πŸ₯·
I may be slow to respond.
πŸ₯·
I may be slow to respond.
373 followers · 2k following

Achievements

Achievement: Pull SharkAchievement: Pair Extraordinaire

Achievements

Achievement: Pull SharkAchievement: Pair Extraordinaire

Highlights

Organizations

@payload-box @mitigra @hexria @offsec-toolkit @malware-insight

Block or report ismailtsdln

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
ismailtsdln/README.md

πŸ‘‹ Hi, I'm Δ°smail Taşdelen

LinkedIn Medium Email

πŸ” Application Security Engineer
πŸ“ Istanbul, Turkey

πŸ“– About Me

Hi, my name is İsmail Taşdelen. I live in Istanbul and work in the IT industry as a security professional. I specialize in finding security vulnerabilities and helping organizations secure their software ecosystems.

πŸ“ˆ Interests: Fintech, long-term investing, real estate, and tech innovation.

πŸ† Bug Bounty & Achievements

  • πŸ” Found +750 various vulnerabilities through Bug Bounty programs.
  • πŸŽ–οΈ Added to the Hall of Fame and Thanks lists of +150 companies.
  • πŸš€ Discovered security vulnerabilities in +65 different software products.
  • ✍️ Passionate about sharing knowledge and writing about technology and security.

πŸ›‘οΈ Professional Responsibilities

πŸ” Vulnerability Assessment & Pentesting

  • SAST: Static code analysis using Fortify SCA.
  • DAST: Manual penetration tests and automated scans using Burp Suite.
  • Code Reviews: Comprehensive security reviews for software developments.
  • Vulnerability Management: Managing and prioritizing reported vulnerabilities.

πŸ—οΈ Secure Design & Architecture

  • Safe-by-Design: Reviewing technical designs for security improvements.
  • POC Studies: Analysis of security products for purchasing recommendations.

🏭 OT Security & Specialized Testing

  • OT Security: Pentesting for OT systems (NIST/ISA standards).
  • Performance: Load and performance tests using JMeter.

🧰 Tech Stack

Category Tools & Technologies
Security Analysis Fortify Burp Suite OWASP Nuclei SonarQube Semgrep Bandit Brakeman Snyk Acunetix AppScan OWASP Dependency-Check Trivy
DevOps & Infrastructure Docker Kubernetes JMeter GitHub Actions Prometheus Grafana k6
Standards & Frameworks NIST ISA OWASP Top 10 OWASP ASVS OWASP SAMM OWASP MASVS SANS Top 25 SANS Secure Coding SANS Blue Team SANS Incident Response
Development Python Java .NET JavaScript Go

πŸ“Š GitHub Stats

Streak Stats

"I write about cybersecurity trends, vulnerability research, and application security."
πŸ‘‰ Follow me on Medium

Popular repositories Loading

  1. ismailtsdln ismailtsdln Public

    Ismail Tasdelen | Application Security Engineer

    3

  2. DexForge DexForge Public

    2

  3. AetherDecomp AetherDecomp Public

    2

  4. aduket aduket Public

    Aduket is a straight-forward HTTP client testing tool for Go. It provides a lean way to spin up a mock HTTP server to imitate different responses and assert that your HTTP client is behaving as exp…

    Go

  5. huawei_hg255_exploit huawei_hg255_exploit Public archive

    Huawei HG255 - Directory Traversal (Metasploit)

    Python

  6. tautulli_2.1.9_exploit tautulli_2.1.9_exploit Public archive

    Tautulli 2.1.9 - Denial of Service (Metasploit)

    Python