Hello, I'm

Hadi Pranata Jati

“Control can sometimes be an illusion. But sometimes you need illusions to gain control.“
— Elliot Alderson [eps2.5_h4ndshake.sme]

About

I started exploring cybersecurity at an early age, learning independently through real-world cases and hands-on experimentation rather than formal instruction. What began as curiosity gradually became a habit: understanding how systems break, why vulnerabilities exist, and how small implementation details can lead to real security risks.

I spend most of my time working with web security, penetration testing, and vulnerability analysis. CTF challenges, private experiments, and manual testing help me sharpen my analytical thinking and maintain a disciplined approach when assessing complex systems. I care more about the process than the outcome, and more about understanding root causes than quick results.

Alongside security, I work as a full stack developer. Building applications end-to-end has given me a deeper perspective on how design decisions, architecture, and code quality directly affect security. I prefer writing simple, readable systems—both to build them and to break them—because clarity exposes weaknesses faster than complexity.

Today, my focus sits at the intersection of development and offensive security: building web applications, analyzing their attack surfaces, and occasionally creating small internal tools to support testing and evaluation. I value precision, restraint, and quiet consistency over noise or spectacle.

Location

Bandung, Indonesia

Focus

Security & Full-stack

Approach

Self-taught

Status

Open to work

Education

Undergraduate

Universitas Komputer Indonesia

Informatics Engineering

GPA: 3.55 / 4.00

Completed

Graduating from college in September 2024

Vocational High School

SMK 1 Sankuriang

Software Engineering

Completed

Foundation in software development and programming.

Self-taught

Independent Learning

Cybersecurity & Web Development

Ongoing

Extensive self-directed learning through real-world cases, CTF challenges, and hands-on experimentation. Stronger in practice than formal theory.

Projects

Strigoth

TUI for investigating web server logs with security analysis, anomaly detection, and fast filtering. Built with Textual + Python.

PythonTextual
CodeLive

Pigeonman

A lightweight Terminal UI (TUI) API client for developers. Send HTTP requests, filter collections, inspect responses, and export data directly from your terminal.

PythonTextual
CodeLive

Secret Dectection MCP

MCP server that detects accidentally committed secrets, API keys, tokens, and credentials using pattern matching and entropy analysis

TypeScriptJavaScriptNPM
CodeLive

azazel

Python library for analyzing malicious binaries through emulation, pattern matching, and integration with reverse engineering tools. Direct integration with reverse engineering tools like Ghidra and IDA Pro

PythonRichyara-rules
CodeLive

Chibbit

An Indonesian stock screening platform featuring technical analysis indicators, financial analysis, and stock screening templates.

PythonTypeScriptFastAPINext.jsTailwind CSSRechart.jsTradingView ChartPydanticDockerCoolifyGithub ActionsCI/CDSWR
CodeLive

V-Priv

A landing page for a technology and cybersecurity solutions company targeting the finance sector and all industrial markets.

TypeScriptNext.jsShadcn UITweakcn UITailwind CSS
CodeLive

Wordpress Vulnerability - Independent Research

Vulnerability research, focusing on dork exploits and cross-site scripting vulnerabilities.

WordPressVulnerability ResearchDork ExploitCross Site Scripting
CodeLive

Vulnerability Evaluation System

Development of a web-based vulnerability gap evaluation system with the integration of rest api tools from whois, wappalyzer, nmap, OWASP Zap and adding vulnerability assessment using CVSS made using python flask as a framework and database using SQLAlchemy

PythonFlaskSQLAlchemyOWASP ZapWappalyzerNmapDNS Lookup
CodeLive

Simple Book Summary

Example FLATFILES Implementation using Java

NetbeansJavaJava SwingFlatfile
CodeLive

Experience

Penetration Tester

KSU Postra - Contract
Aug 2024 — Jan 2025

As a penetration tester, I am involved in the development and security testing of web applications. My primary focus is conducting vulnerability assessments and penetration tests using a gray-box approach and the OWASP Top 10 standards.

Full Stack Developer

KSU Postra - Internship
Jul 2024 — Aug 2024

As a full stack developer, I build web applications from end-to-end. My focus is on writing clean, maintainable code and understanding the full stack to build secure, scalable solutions.

Network Technician

Telkom Indonesia - Internship
May 2019 — Jul 2019

I work as a network technician responsible for installing and adding internet services to customers' homes. My primary focus is ensuring that internet connections are properly installed, stable, and meet company standards.

Contact

I'm always open to discussing new opportunities, interesting projects, or just having a technical discussion. Feel free to reach out.

EmailGitHubLinkedIn