PENETRATION TESTER // OFFENSIVE SECURITY // WEB APP SECURITY // RED TEAM OPS // NETWORK SECURITY // EXPLOIT DEVELOPMENT // PENETRATION TESTER // OFFENSIVE SECURITY // WEB APP SECURITY // RED TEAM OPS // NETWORK SECURITY // EXPLOIT DEVELOPMENT //

01 — PROFILE

ABOUT ME

// aka null0x

YOUR PHOTO HERE
Location
Italy
Remote
Yes
Focus
Offensive Sec
Status
For Hire
Languages
Italian, English
HIRE ME ›

Hi, I'm Davide Vesentini, known in the scene as null0x — a penetration tester specializing in offensive security operations. I help organizations identify and remediate vulnerabilities before malicious actors can exploit them.

My methodology is systematic and thorough — from reconnaissance and enumeration to exploitation and post-exploitation analysis. Every engagement is treated as a real-world attack simulation, delivering actionable reports that go beyond CVSS scores.

"I don't just find the hole in the fence — I show you exactly how an adversary would walk through it, what they'd take, and how to stop them."

I work with companies of all sizes, from startups to enterprise, across web applications, network infrastructure, API security, and social engineering assessments. Discrete, thorough, and always on the offensive side of the table.

SKILLS & TOOLS

Burp Suite Metasploit Nmap Kali Linux Python Web App Testing Network Pentest OSINT Social Engineering Active Directory API Security Red Team Ops Wireshark SQLMap Cobalt Strike

WHAT I DO

🌐
Web Application Pentest
Full OWASP Top 10 coverage, business logic flaws, authentication bypass, and API security testing.
🔌
Network Penetration Test
Internal and external network assessments, firewall bypass, lateral movement and privilege escalation.
🎭
Red Team Operations
Full adversary simulation — phishing, physical access, C2 infrastructure, and post-exploitation.
⚙️
API Security Assessment
REST and GraphQL API testing, broken object level authorization, injection, and data exposure.