User:Demonalex

M.S. in Data Communications, M.Sc. in Software Technology and M.Eng. in Software Engineering graduate. Over 10 years’ experience in Information Security field. Found over 20s vulnerabilities collected by the CVE and BUGTRAQ. Familiar with multiple Information Security systems, such as Network Security Scanner (Nessus, OpenVAS, IBM ISS Scanner), Intrusion Detection System (Snort, Bro), Application Scanner (IBM Appscan, HP WebInspect, Burp, Paros), Secure Code Review Tool (HP Fortify, FindBugs), Firewall (Juniper, CISCO ASA, Iptables), Honeypots (Honeyd, Nepenthes), Protocol Analyzer (Tcpdump, Wireshark, Sniffer Pro, IRIS), Endpoint Security (Symantec, Comodo), and SEIM/SOC (OSSIM, HP ArcSight). Over five year development experiences with Perl and Python languages, understand C/C++, Basic, PHP, SQL (MSSQL, MySQL, and Oracle), HTML, and Shell (bsh, Bash, and csh). Specialize in security of multiple Operating Systems, such as Windows, Linux, FreeBSD, Solaris, and IOS. Dedicated to analyzing distinct network protocols so as to develop customized Protocol Fuzzers. Participated and managed diverse projects, like risk evaluation and management, Information Security Management System (ISMS) building, penetration test, application security evaluation, customized security tool development (Fuzzer, IDS/IPS, Scanner, and Honeypot), secure source code audit, deployment of multiple security devices, security service outsourcing, training, and emergency response. Familiar with Office software and several year experiences of Information Security Service team building. CEH, EXIN and CIW certified in multiple Information Technology areas.