# Rafet Abbasli | Senior Software Engineer & Security Researcher ## Profile Summary & Objective A Senior Software Engineer and Security Researcher with end-to-end experience in the full product lifecycle. Engineering expertise is defined by applying an attacker's mindset to architect, build, and secure complex systems—from distributed backend services and threat intelligence platforms to stealth data acquisition systems and robust CI/CD pipelines. This engineering foundation is complemented by a consistent track record in offensive security, identifying and responsibly disclosing critical vulnerabilities in large-scale infrastructure. **Primary Objective:** Actively seeking relocation to the DACH region for a full-time Senior Software Engineer or Security Researcher position within a market that has a mature and stringent cybersecurity landscape, offering opportunities to solve meaningful security and engineering challenges. --- ## Approach & Professional Philosophy * **Defense Through Offense:** Operates on the principle "The Best Defense is Built on a Deep Understanding of Offense". Systems are built by first considering how they can be broken, leading to more robust and secure architecture from the ground up. * **Autodidactic Mastery:** A self-directed, lifelong learner driven by complex challenges. All core technical skills—from low-level systems to advanced security research—are the result of independent, first-principles learning. This has cultivated a strong ability to master niche, difficult subjects where standard training materials do not exist. * **Aggressive Automation:** Possesses a deep-seated drive to automate complex and mundane tasks. This focus is not just about efficiency; it's about eliminating human error, creating scalable systems, and freeing up engineering resources to focus on higher-impact problems. * **Purpose-Driven Motivation:** Primary motivators are intellectual competition and measurable progress. Thrives in competitive environments where the pursuit of mastery is a shared value, driven to help businesses prevent abuse and exploitation before malicious actors can strike. --- ## Offensive Security & Vulnerability Research (2022 - Present) Authorized, independent research focused on application logic flaws, infrastructure vulnerabilities, and large-scale platform integrity. * **CVSS 9.9 (RCE):** Remote Code Execution in a major insurance portal, securing PII & financial data for **10M+ citizens**. * **CVSS 9.6 (ATO):** Critical Account Takeover on `Tap.az` & `Turbo.az` (Azerbaijan's highest-traffic platforms, **5M+ combined users**). * **CVSS 8.6 (LFI):** Local File Inclusion on a leading e-commerce platform (**1M+ users**), granting root-level filesystem access. * **CVSS 7.7 (Search Poisoning):** Logic flaw in LinkedIn's search algorithm affecting web, mobile, and external search engines. * **CVSS 6.5 (State Corruption):** Permanent state corruption in `Linear.app` (used by OpenAI, Vercel), resulting in unrecoverable account damage. * **Google VRP:** Discovered an infrastructure exhaustion vulnerability in Google's crawling systems. * **GenAI/LLM Security:** Research into adversarial attacks including System Prompt Contamination and context-overloading for safety guideline bypasses. * **Anti-Cybercrime Operations:** Disrupted 3 DDoS-For-Hire networks through OSINT and vulnerability research, resulting in **2 full infrastructure takedowns**. > [!NOTE ON VERIFICATION] > All listed findings can be substantiated upon request with non-public documentation and proof-of-concept materials. In addition to public disclosures, the research portfolio includes multiple nation-wide vulnerabilities involving mass PII enumeration, which remain strictly confidential due to their sensitivity and non-disclosure agreements. --- ## Professional Experience ### Senior Software Engineer at Cypho (July 2023 - February 2026) **Core Contributions:** * Architected and developed automated threat monitoring tools in Python and Go, ingesting intelligence from over 50 disparate sources. * Engineered data processing pipelines handling TBs of raw infostealer logs and threat intelligence data monthly. * Reverse-engineered and bypassed advanced security controls (reCAPTCHA v2/v3, Cloudflare Turnstile, DDoS-Guard). **Technical Scope & Projects:** * **Automated App Analysis:** Built a monitoring system for third-party app stores with MobSF integration for automated static APK analysis. * **Threat Intelligence:** Implemented dark web and cybercrime forum monitoring using fuzzy matching algorithms. * **Advanced Automation:** Developed WebDriver-less browser automation using direct CDP manipulation and human behavior simulation. * **Open Source:** * Authored a **Rust-to-Python API wrapper** for the `rs-google-play` project. * Built a secure, **AWS S3-based pastebin service in Go** with password protection, expiration, and burn-after-read functionality. --- ## Technical Skill Matrix * **Security:** API Reverse Engineering, CAPTCHA & Anti-Bot Bypassing, Manual Vulnerability Research, Penetration Testing, Secure Code Review. * **Languages:** **Python** (Expert), **Go** (Intermediate), **Rust** (Learning), **JavaScript** (Node.js / Bun). * **Infrastructure:** 5+ years of Linux (Arch), Docker/Podman, GitHub Actions, Ansible, RabbitMQ, AWS S3. * **Tools:** Burp Suite/Caido, Wireshark, Frida, MobSF, Puppeteer/DrissionPage (+CDP), HTTPie. --- ## Education & Languages * **Master's Degree:** Management Information Systems (MIS/ICTs) - *Finished Jun 2025* * **Bachelor's Degree:** Information Technologies (in English) - *Finished Jun 2023* * **Languages:** **English** (C1, IELTS 7.5), **Azerbaijani/Turkish** (Native), **German** (A1 - Actively Learning), **Russian** (Basic).