- Constanta, Romania
- Full Time
- Vlad is a vibrant and versatile Web Developer with an extensive technical background/success in systems administration and in the delivery of exceptional software solutions for clients. He is highly skilled in the use of PHP, WordPress, Go and Python and technically adept in networks, Debian, and GNU/Linux. All of his products/technical solutions are clean, secure, efficient and well-documented.
Senior Software Engineer
- Laravel Framework4
- - less
Creating and developing innovative software solutions for clients across a broad range of industries.
Regularly developed websites using different technologies, identified and removed bugs from existing projects, and conducted post-development maintenance for clients.
Served as a Linux System Administrator on various projects; reinforcing project development in all phases (Debian VPSs).
Provided technical expertise as Linux administrator on different projects on behalf of Request.
Regularly participate in the development of frontend and backend web services on numerous projects using vanilla or framework driven PHP or Node.js
Provided technical support on Request's projects by investigating and solving complex technical problems swiftly and effectively.
Developed the web fuzzer with a process flow to allow web developers and even pen-testers to know what routes are available at an endpoint, with a routing script. (e.g. Was the page found? Are you allowed on that page? Are you being redirected? What happens when you set a custom user agent?).
Created various security rules in the web fuzzer to perform GET, HEAD, or POST method requests, spoof headers, follow redirects, and even sleep a random time (set from predefined values) in the event of a throttler. Implemented keyword and status code filtering.
Developed gofindssh with the idea of fighting fire with fire with a SSH Brute Forcer, which disallowed users to use password authentication with weak passwords.
Created the security features enabling gofindssh to dial the “victim's” address on the specified port, check if the machine is up, load the username and password files in memory, and validate if login is successful.
Ensured that all authentication attempts were done concurrently via go routines, with each username and password pair simultaneously tested in a worker pool based on a buffered channel.
Developed gophirc to have the capability to connect to multiple servers at the same time using go routines, with the ability to add and serve multiple events per callback.
Created features to immediately receive and manage PING requests, automatically register with the server, and join the channels when invited.
Implemented rules such as defaults and value checking in the config, parsing CTCP messages into events, and built in a basic set of commands.
Set up the framework to have the capability of setting multiple administrators, along with multiple ignored users.
Managed servers and Virtual Private Servers (VPSs). Installed and configured web servers for hosting PHP web apps or proxying the traffic to services listening locally.
Identified, cleaned, and restored more than 30 domains from being hacked through vulnerable services and web apps.
Applied reverse engineering in obfuscated web shells to understand what they do, how they work, and what payloads they send and receive.
Configured services to block brute force authentications. Created a self-hosted mail server and set up Let’s Encrypt for SSL/TLS certificates with automatic renewal.
Created a simple WordPress website with custom design/pages and custom contact forms with validation and captchas. Migrated the old website from simple HTML pages to a fully functional WordPress setup.
Created and configured two custom contact forms with validators and captchas and set up a Google AdWords campaign for the project.
Implemented features on Wospi to get words of a minimum length as specified by the user or use of a custom user agent.
Created additional features to allow Wospi to save the stripped version of the words as well, which removes often used symbols such as dots, commas, and quotes.
Improved API performance
Implemented referring system using both app credit & Stripe credit
Improved search filters' performance & added custom time filter
Implemented custom, responsive & dynamic calendar