/etc/about

Security notes with the polish stripped off.

jankesec is a dark corner for practical pentest methodology, vulnerability research notes, and web security analysis that still holds up when the assessment gets messy.

About the Author

Sevban Dönmez is a Senior Cybersecurity Professional specializing in Penetration Testing, Red Teaming, and Vulnerability Research. With a strong foundation in the technology and consulting sectors, I have been an active researcher in the offensive security space since 2012.

My technical expertise spans Application Security, Threat Modeling, Network Architecture, and Advanced Operating Systems. I am deeply passionate about uncovering critical vulnerabilities and am a dedicated contributor to open-source security projects.

Throughout my career, I've conducted rigorous security assessments across diverse industries. My ultimate mission is to build highly resilient architectures by combining proactive defense strategies with relentless technical rigor.

Numbers

11 Write-ups
4 CVEs Published
13+ Years in Offensive Security
49 Topics Covered

Certifications

OSCP OffSec Offensive Security Certified Professional
CRTO Zero-Point Security Certified Red Team Operator
CPTS TSE Certified Penetration Testing Specialist — Turkish Standards Institute
ISO 27001:2022 ISO Information Security Management Systems

Timeline

2012 Started security research
2014 Underground forum — early exploit development and research
2017 HackerOne — bug bounty hunting and responsible disclosure
2021 Private company — penetration testing and security consulting
2025 PwC Turkey — senior cybersecurity professional

What gets published

The site covers vulnerability research, application security, penetration testing, threat intelligence, exploit development, and supply chain security — with a focus on technical depth, reproducible findings, and real-world impact.

Posts are written in English for an international technical audience. The tone is direct, field-oriented, and evidence-driven.

METHODOLOGY Testing approaches, checklists, and decision points that keep assessments focused.
RESEARCH_NOTES Root cause analysis, variant hunting, and exploitability constraints.
WRITEUPS Reproducible technical narratives with impact and remediation clarity.
FIELD_LESSONS Patterns learned from authorized testing and defensive validation.