_baycode.eu

Development,
App Security

💻 Custom Software
🛡️ Application Security
🔍 Penetration Tests

# Who am I

My name is Krystian Bajno, I'm a software developer and cyber security specialist (appsec, netsec). This little space on the web is where technology meets personality, and I'm thrilled to have you here.

My domain covers full-stack software engineering as well as penetration tests and implementing S-SDLC programmes.

# Custom Software

APIs that Speak Your Language

Need to architect and create a backend solution? I've got you covered. API development is my playground, no matter if in the serverless cloud and including cozy spots on Microsoft Azure, or microservices or monolith applications.

Apps that look and work great

I love crafting mobile and frontend apps that not only look fantastic but also work seamlessly. A perfect blend of pixel perfect style and UX functionality for your digital needs.

Project management

I specialize in agile development, where sprints meet big results. Think Scrum and Kanban.

Stack

Backend

TypeScript
JavaScript
- Node
  - Express.js
  - Nest.js
PHP
- Symfony
- Laravel
  - Lumen
Python
- Flask
- Django
Golang

Frontend

React.js
- Next.js
Vue.js
- Nuxt.js
jQuery
HTML5
- SCSS

Mobile

React Native
- iOS
  - TestFlight
- Android

E-commerce

Sylius
Prestashop
Shopify

Databases

MongoDB
MySQL
PostgreSQL
Neo4j

Message Brokers

RabbitMQ
Kafka
Redis

Cloud Services

Azure
Google Cloud
Algolia
Firebase
ElasticSearch
AWS
Webflow

DevOps

Kubernetes
Docker
Terraform
Vercel
Ansible
Git
- CircleCI
- GitLab CI
- Github Actions
Nginx
Apache
Bash
Powershell

And more. Checkout my GitHub and LinkedIn page.

# Security Assessments

Tailored Solutions

I offer a range of services, from external and internal network testing to scrutinizing web applications, social engineering/phishing, and S-SDLC programmes as a proactive strategy crafted exclusively for your needs, so you can focus on what you do best.

Cooperation

Picture me utilizing cutting-edge tools and techniques to systematically identify vulnerabilities within your network, systems, and applications in order to reveal hidden risks and deliver tailored, practical recommendations to enhance your security posture.

Let's Boost Your Cyber Armor

Take the first step to enhance your organization's cyber defense by scheduling a call with me today.

0x08 - Stay safe, realistically

Final part three of the Hello Security series dedicated to extend cyber-security awareness, performed at WGUiSW conference.

0x07 - About Insider Threats. Crypto, Stego, DLP

Part two of the Hello Security series dedicated to extend cyber-security awareness, performed at WGUiSW conference.

0x06 - Say Hello To Security - AI & Voice Cloning

Part one of the Hello Security series dedicated to extend cyber-security awareness, performed at WGUiSW conference.

0x05 - TIOCSTI injection

Abusing TIOCSTI to manipulate process file descriptors and execute arbitrary commands.

0x04 Lateral Movement

Exploiting the Active Directory environment and compromising the domain controller.

0x03 Prototype Pollution

Finding a way into the internal infrastructure. Prototype pollution, popping shells, for fun, and for profit.

0x02 Terminal Injection

What happens when you run scripts without checking the contents properly?

0x01 Web Hacking - Cookies Interception 101

This article will explain some of the common HTTP state interception methods.

Krystian Bajno