About

Hi, I'm Devran Atuğ — a cybersecurity consultant and researcher working across red teaming, application security, and cloud.

On this blog I write about the technical side of that work: CVE analyses and proof-of-concepts, recon and exploitation notes, and short pieces on web, network, and Linux internals. The goal is a quiet place where code and terminal output read clearly, with nothing in the way. Everything here is for education and research; techniques should only be tested against systems you own or are explicitly authorized to assess.

Experience

  1. Cyber Security ConsultantJun 2025 – Present
    PRODAFT · Full-time
  2. Jr. Red Team Security EngineerJul 2023 – Jun 2025
    Gais Cyber Security · Full-time
  3. AWS Security InternJul 2022 – Mar 2023
    Skyloop Cloud · Internship

You can find me on the links in the footer.