Mike [m8sec]

---

Whoami

Hi, my name is Mike - Otherwise known as m8sec on the internet. I work as an offensive security manager leading a wide range of services against client environments.

In my spare time, I create blog posts and write code relating to hacking. I've authored a number of tools, including: SubScraper, CrossLinked, and nullinux.

---

Links

---

Acronyms

MSIS, CISSP, OSWP, OSCP, CRTO, EWPT, CEH

---

Experience

• Participant in vulnerability disclosure programs through HackerOne, BugCrowd, and Synack Red Team.
• Mimecast Security Researcher Wall of Fame.
• Vulnerabilities Identified:
  • CVE-2021-41322: Poly VVX 400/410 v5.3 Privilege Escalation
  • CVE-2021-3816: Cacti v1.1.38 Stored HTML Injection
  • CVE-2021-23225: Cacti v1.1.38 Stored XSS
  • CVE-2021-26247: Cacti v0.8.7g Reflected XSS