SECURITY RESEARCHER // PENETRATION TESTER

CIPHER DAVY

CVE-2025-69906 // MONSTRA CMS RCE  |  CVE-2024-57373 // AUTH BYPASS  |  CVE-2025-29722
3 CVEs Disclosed
21+ Tools Built
80+ Bugs Fixed
2x IBR Achiever
VIEW ARSENAL SECURE VAULT
01

ABOUT

I'm Davy Cypher — a cybersecurity researcher and penetration tester focused on bug bounty hunting, vulnerability discovery, and exploit development. I spend my days digging through web apps and cloud platforms to uncover security flaws, then turning them into solid, ethical proof-of-concepts that help companies patch real-world risks.

With 3 disclosed CVEs, 21+ open-source tools, and recognition from the India Book of Records, I operate at the intersection of research and real-world impact — making the web safer, one vulnerability at a time.

"Curiosity is my compass, and hacking is the language I use to explore the unknown."
AREAS OF EXPERTISE
Web Application Security — XSS, SSRF, RCE, CSRF, IDOR
Cloud Infrastructure Hardening & Misconfiguration Analysis
WAF & Edge Protection Bypasses
Advanced Reconnaissance & Enumeration
Automation & Tooling — Python, Bash, ADB
OSINT & Wireless Security Testing
Exploit Development & Proof-of-Concept Crafting
Bug Bounty Hunting across public & private programs
02

ACHIEVEMENTS

🏆 INDIA BOOK OF RECORDS — 2× ACHIEVER
Cyber Security Researcher – Bug Detection
CONFIRMED: NOV 4, 2024

Detected and fixed 80+ bugs, enhanced security for Hall of Fame organisations across multiple vulnerability programs.

↗ VERIFY RECORD
Open-Source Security Tools Developer
CONFIRMED: AUG 5, 2025

Developed 21 open-source cybersecurity tools covering recon, scanning, exploitation, OSINT, automation, and wireless testing.

↗ VERIFY RECORD
// HALL OF FAME RECOGNITIONS
Bug Bounty HOF Responsible Disclosure Security Research Vulnerability Discovery Open Source Contribution Ethical Hacking
03

DISCLOSED CVEs

CVE-2025-69906
Monstra CMS Remote Code Execution
RCE // Critical
CVE-2024-57373
Authentication Bypass Vulnerability
AUTH BYPASS // High
CVE-2025-29722
Security Vulnerability Disclosure
VULNERABILITY // Medium

// All CVEs verified on CVE.org — click any card to view the official record

04

ARSENAL

21 open-source cybersecurity tools spanning reconnaissance, scanning, exploitation, OSINT, automation, and wireless security. All available on GitHub — built for researchers, by a researcher.

JackScanner
Scanning
Yumi
Recon
Fang
Exploitation
C-Harvester
OSINT
Scan-Automation
Automation
KeyCracker
Exploitation
RAT
Red Team
InfoDigger
OSINT
WirelessProbe
Wireless
ReconBot
Recon
VulnMapper
Scanning
+ 10 more on GitHub
Open Source
↗ VIEW ALL ON GITHUB
05

SKILLS

// OFFENSIVE SECURITY
Web App Pentesting95%
Bug Bounty Hunting90%
Exploit Development85%
WAF Bypass88%
Wireless Security80%
// TOOLING & RESEARCH
Python / Bash92%
OSINT & Recon93%
Cloud Security82%
Vulnerability Research90%
Tool Development87%
06

CONTACT

Available for bug bounty collaborations, security research partnerships, red team engagements, and responsible disclosure coordination. Open to working with security teams who take vulnerabilities seriously.

DAVYCYPHER@GMAIL.COM
CURRENTLY AVAILABLE FOR
Bug Bounty Programs (Public & Private)
Penetration Testing Engagements
Red Team Collaborations
Security Research Partnerships
CVE Coordination & Disclosure
Open Source Tool Development