About

Hello, this is Duty. Security researcher, Synack Red Team Acropolis inductee, and creator of SubCat. I break things to make them safer.

If you have any suggestions or feedback, feel free to reach out.

Twitter	@duty_1g
GitHub	@duty1g
Synack	Acropolis Inductee
Focus	Offensive Security · Bug Bounty · Tool Development

Writing

Technical write-ups and community features.

How a JavaScript file revealed dynamic routing patterns that led to PHP gadget chains and full RCE.

Independent Medium article on SubCat's capabilities for subdomain enumeration.

Recognized for sustained excellence in vulnerability research and contributions.

Open-source security tools built from real-world needs.

Lightning-fast passive subdomain discovery with modular sources for pentesters and bug bounty hunters.

Python Recon

Windows privilege escalation research tooling for post-exploitation scenarios.

PureBasic Windows

Minimalist Windows reverse shell for demos and controlled lab environments.

PureBasic PoC

Areas of expertise and tools of the trade.

Web Security Cloud Windows Recon Python Go C# PureBasic