Emmanuel Musau web loader

Hi, I'm,


Emmanuel Musau
Penetration Tester | Cybersecurity Researcher | Developer | Ethical Hacker

I am a cybersecurity enthusiast with a strong passion for penetration testing, vulnerability research, and security automation. I am also a CTF player and a student. My expertise lies in ethical hacking, API security, web security, and network security. I am continuously expanding my knowledge and applying it to real-world security challenges.

Open for collaboration, challenges and opportunities

I. About

Hello there 👋 I'm Emmanuel Musau. a cybersecurity enthusiast and penetration tester with a strong passion for ethical hacking, exploit development, and web security.

• I specialize in offensive security, actively researching vulnerabilities, and participating in CTFs and bug bounty programs to sharpen my skills. I have experience in web & network penetration testing, vulnerability research and automating security tasks using Python and Bash scripting.

• When I’m not breaking into systems (legally, of course 😆), I’m testing security tools, competing in CTFs, and diving into security reports.


  • Offensive Security & Red Teaming
  • Bug Hunting & Exploit Research
  • Automation & Secure Development
  • Cyber Threat Intelligence & Digital Forensics
  • Security Tools
Emmanuel Musau profile image

II. Experience

Bug Bounty Hunter

Online, remote

August 2024 - Present

  • Identifying and exploiting web application vulnerabilities, including XSS, SQLi, CSRF, authentication bypass, and misconfigurations.
  • Continuously refining skills in advanced techniques like exploit chaining, API security testing, and bypassing modern security controls.

Hardware Repair & Diagnostics

Freelance & Self-Taught

May 2022 - Present

  • Diagnosing and repairing mobile devices and electronics, including hardware failures and software issues.
  • Performing component replacements, such as screens, batteries, and internal chips.
  • Skilled in soldering and circuit repair for board-level fixes and hardware modifications.
  • Troubleshooting and resolving software-related issues, including OS installations, boot errors, and firmware recovery.

III. Skills

Penetration Testing
  • Web Security (XSS, SQL Injection, CSRF, SSRF)
  • Network Security (Recon, WAF Bypass,Wireless Attarks, )
  • API Security(Api enumeration, token manipulation, IDOR)


Security Tools & Platforms
  • Nmap
  • Metasploit
  • Burp Suite
  • Wireshark
  • Nessus
  • Shodan
  • Censys
  • Dirbuster
  • OWASP ZAP
  • scripting with python


Programming
  • Python
  • Bash
  • C
  • C++
  • Kotlin
  • PHP


Mobile Apk security
  • Static & dynamic analysis of APKs files
  • Decompiling with JADX, APKTool and Frida
  • Runtime manipulation( Xposed and GameGuardian )
  • SSL unpinning
  • Code injection
  • Analyzing traffic with Burp
  • Bypass root detection


Forensics
  • Basic Memory & Disk Analysis
  • Incident Response & Log Analysis
  • steganography


Web Dev
  • HTML
  • CSS
  • PHP
  • XML
  • CSS
  • Django
  • React.js( new )
  • Sql
  • MySQL
  • PostgreSQL

IV. Education

Bachelor's Degree in Computer Science

Aug 2022 - April 2026

Murang'a University of Technology, Murang'a

12th grade | KCSE

January 2018 - April 2022

Menengai High School, Nakuru

8th grade | KCSE

January 2009 - December 2017

Flamingo Primary School, Nakuru



V. Certifications



VI. Projects

  • Security Project

    CyberResource Platform

    This is a Web-based platform consolidating cybersecurity tools & resources, its features include: Intelligent tool suggestions, API integration (Shodan, Censys, SecurityTrails),and simple task automation, like recon from builder tab

    Very new, just initialized

    • Python
    • Django
    • PostgreSQL
    • Golang
    CyberResource Platform picture

  • Web Project

    Employee Management System

    A secure web-based employee management app with role-based access control and authentication mechanisms.

    and other features such as an Internal chat app

    • Python
    • Django
    • MySQL
    • HTML
    • CSS
    System dashboard

  • Scripts/tools

    ProxyUTILS

    a collection of python scripts to test proxies, check type, resolve proxy location using api, and rank them based on various metrics

    • Python
    Part of the tool in use

  • Gaming

    snake game

    A simple web based classic snake game with a high score counter

    • HTML
    • CSS
    • JS
    Snake game window



Get in touch

Let’s connect and chat about ethical hacking, and tech innovations! If you’re Free, let’s grab some tea ☕, ( don’t bring your wallet 😆 ) We'll toss a coin.


D mod By
Emmanuel Musau