Defense is built by those who know how to attack.
I think like an attacker, I build like an engineer.
A researcher before a manager. Co-Founder & CTO of Securitix Solutions, CTO of Vulneralt, and the sole Cybersecurity Operations & Engineering lead for an industrial group. Trained in the US on critical infrastructure. I find the flaws, write the exploits, then build from scratch the defense that holds them.
3 Critical CVEs · 10 published advisories · 4 pending at MITRE · 40+ targets
Manual source-code review and coordinated disclosure, with a growing focus on AI/LLM security.
| CVE | Target | Class | Severity |
|---|---|---|---|
| CVE-2026-38595 | im3x/Scriptables | OS Command Injection | Critical 9.8 |
| CVE-2026-38600 | gohttpserver | Zip Slip → RCE | Critical 9.1 |
| CVE-2026-38601 | gohttpserver | Hardcoded session secret | Critical 9.1 |
Plus "6 libraries, one leak" - the same cross-origin auth-header leak found across undici, node-fetch, follow-redirects, gorequest, req and go-resty. → Full archive: security-research
Proprietary platforms I designed end-to-end and run in production. Code is closed source - case studies on my site.
- Presidio - multi-tenant XDR/MDR SOC platform
- Valta - AI-powered Cyber Threat Intelligence
- Mirage - deception network with intelligent honeypots
- Argus - AIOps dashboard for SMB / MSP
- Forge - security awareness & training LMS
- and more: Sign, Cipher, Tempest, PhishSim
| Project | What it is |
|---|---|
| security-research | CVEs & responsible disclosures |
| PasswordFilterDLL | Active Directory LSA password filter - offline HIBP via Bloom filter, GPO-ready |
| burp-mcp | Burp Suite MCP server - 61 tools to drive Burp from an AI agent |
| Wordlist-Forger | Customizable wordlist generator for pentesters |
| USBBlocker | Block USB mass storage on Windows - endpoint hardening |
| glublm | A 36M-param browser language model + pixel-art desk pet |
- Offensive · Web / Mobile / AI pentest, Red Teaming, Malware Analysis, Vulnerability Research
- Defensive · XDR/EDR, SIEM, SOAR, Zero Trust, Hardening, M365 / AD
- Governance · ISO 27001, NIS2, GDPR, Risk Management, Threat Intelligence
- Engineering · Python, Go, TypeScript, Docker, Proxmox, AWS, Next.js
CompTIA Security+ · Cisco CCNA · AWS Cloud Practitioner · A.A.S. Cyber Security (High Honors) · NCL Top 6% · Anthropic Cyber Verification Program
dennis.d-enterprise.cc · LinkedIn · securitixsolutions.com · dennis@securitixsolutions.com