Light

Carlos Bello photo

retr02332 Goto Github PK

followers: 29.0 following: 15.0 repos: 19.0 gists: 5.0

Name: Carlos Bello

Type: User

Bio: Our intelligence is the most powerful tool we can have, and it is in our hands to use it to learn, imagine and create.

Twitter: retr02332

Location: Colombia

Blog: https://gist.github.com/Retr02332

Carlos Andrés Bello (Retr0)

A little about me

Hi, I am Carlos Bello, better known in tech industry as Retr0. I am 20 years old. I am a web hacker with 3 years of experience.

I started programming in Python3 when I was 16 years old. Then over time I learnt more about networking, command line and a bit about operating systems.

At 18 years old, I got interested in ethical hacking. I thought it was cool how to take technology to another level, giving it a particular use to accomplish things that never came up in business logic. I began like everyone else, in the infrastructure part, but it wasn't until 6 months later when I realized that what I liked the most was hacking web applications.

In my eagerness to better understand the web applications that I hacked, I started in parallel my training in web development. It is beautiful to build web applications and then to analyze where there may be bugs and how we could leverage that in a web security audit.

In 2021 and 2022 I was a bug hunter at Hackerone. Here I reported high impact vulnerabilities to companies like Yahoo!, Google, KAYAK, NASA, Cornershop by Uber, AT&T, Logitech, among others. I studied web hacking at Pentesterlab and PortSwigger.

I am currently a security researcher at Fluid Attacks. I test web apps, Android mobile apps and API'S. In my work I have found multiple CVE's which you can find here:

https://fluidattacks.com/advisories/

My skills

I am continuously training myself in topics related to hacking web applications, Android apps and API's.

I use technologies like Python3 and node.js to build tools that allow me to automate my daily activities in order to be much more productive.

I also use C++ when I need programs with good performance, or when I need low level programming, like interacting with the registers (internal state) of hash algorithms, for example.

In web development, I usually use HTML, CSS, and JavaScript for front-end, and Django with some databases like MySQL, PostgreSQL, and SQLite3 for back-end.

I like to spend time looking for security bugs at the apps' code.

Languages and tools

My goals

My purpose for 2023 is to get certified in hacking web, Android and API's applications.

Statistics

Contact me

Carlos Bello's Projects

advanced-sql-injection-cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

agenda_contactos

Libreta de contactos personal

awesome-cvelabs

A list of all awesome CVELabs

bbrf-maintenance

I built some bash functions to help me while doing mundane and repetitive tasks using BBRF, Nuclei or other Bug bounty tool.

browsershot

Convert HTML to an image, PDF or string

ctf_writeups

cve-2020-7115

Create your malicious engine in seconds

escalera

Miniproyecto #4 Univalle

ext-libxml

hackerbot

Receive notifications about your reports and access your hackerone information quickly and easily.

imagemagick

🧙‍♂️ ImageMagick 7

insecureprogrammingdb

Insecure programming functions database

palabrejas

Proyecto #3 de programación interactiva (univalle)

parse_sitemap

Simple tool to export your burpsuite sitemap assets to a format much more comfortable to read and work with.

process-hollowing

Great explanation of Process Hollowing (a Technique often used in Malware)

public-writeups

CTF write-ups by Maple Mallard Magistrates

retr02332

retr02332.github.io

web3-security-notes

Personal notes about Web3 from a hacker's perspective.

1

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.