Hello, I'm

Richard Almeyda

Offensive Security Specialist & Penetration Tester.

18 y.o. Cybersecurity Specialist with 2+ years of experience in offensive security.
Specializing in pentesting, massive CTF operations, and tool development.
eCPPTv3 Certified

View Operations Contact Me

01. About Me

Technical Skills: Web application security testing, vulnerability assessment and basic penetration testing, network scanning and enumeration, strong understanding of common web vulnerabilities (OWASP Top 10), and good knowledge of networking fundamentals and protocols. eLearnSecurity Certified Professional Penetration Tester (eCPPT). Experience developing custom security tools in Python. Entry/Mid-Level web development experience including developing multiple custom tools and web applications, backend development using Flask and Django, working with API integrations, and system integrations,basic frontend development using HTML, CSS, and Bootstrap, basic experience with Vue.js, database integration(postgresql, sqlite) and management, and knowledge of application deployment processes. Strong practical experience with Python, Linux environments, Docker, Git, and deployment workflows for development and production environments.

I am always ready to learn new technologies and methodologies as needed.
Fluent in English/Russian.

Here are a few technologies and skills I've been working with recently:

Networking

  • Deep understanding of OSI Model (7 Layers)
  • TCP/IP Stack & Packet Flow
  • TCP 3-way Handshake & Analysis
  • Packet Encapsulation & Routing
  • Subnetting & Network Segmentation
  • Routing Protocols (Static/Dynamic)
  • Protocol Analysis (SMB, SSH, HTTP/S, DNS, ARP)
  • Cisco Packet Tracer Lab Experience

Penetration Testing

  • eCPPTv3 Certified (INE)
  • Active Directory Exploitation
  • Privilege Escalation & Lateral Movement
  • Credential Attacks & Enumeration
  • Network Mapping & Attack Surface
  • Identifying Protocol Misconfigurations
  • Practical Exploitation in Labs

Web Application Security

  • Experience with Burp Suite
  • OWASP Top 10 Vulnerabilities
  • SQL Injection (SQLi)
  • Cross-Site Scripting (XSS)
  • Authentication & Access Control Flaws
  • Security Misconfigurations

02. Featured Projects

ServePay Bot

The ultimate automated digital marketplace on Telegram. ServePay is a marketplace that allows users to find and sell goods and services .
Designed for comfort and ease of use.

  • Telegram API
  • Crypto Payments
  • Python Automation

VulnDump

A massive, centralized vulnerability & exploitation intelligence platform. VulnDump aggregates thousands of CVEs, exploit chains, and PoCs into a searchable, rapid-access knowledgebase. Built to support red team operations during critical engagements, allowing for instant retrieval of payload syntax and exploitation techniques.

  • Flask
  • Threat Intel
  • Red Teaming

3num-tool

A comprehensive enumeration tool for network reconnaissance and asset discovery.

  • Python
  • Recon

3asyPr1vs

Automated privilege escalation tool to identify potential vectors on target systems.

  • Python
  • PrivEsc

SnapHunt

Lightweight Python tool for image intelligence gathering and analysis.

  • Python
  • OSINT

deeplog

Web application for instant server log file analysis and visualization.

  • Python
  • Logs

WaffHunter

Web Application Firewall (WAF) detection tool.

  • Python
  • WAF

03. Connect

04. Contact Me

Let's Connect

Feel free to reach out for collaborations or just to say hi.

RichardAlmeyda@proton.me