Hello, I'm
Specializing in cybersecurity, vulnerability research, and CTF problem-solving. Passionate about securing systems, uncovering vulnerabilities, and turning complex security challenges into real-world impact.
Hi, I'm Muqsith Barru Pamungkas
5th-semester Internet Engineering Technology student specializing in cybersecurity, with practical experience in web application security, networking, and IoT. Proven ethical hacker with a track record of identifying and responsibly disclosing vulnerabilities including Information Disclosure, XSS, and SQL Injection in university and government systems. A national finalist in the IDSECCONF 2024 CTF competition and a core team member of the TRI Cybersecurity Community, responsible for mentoring members and delivering foundational cybersecurity trainings
Technical Skills
Technologies and tools I've worked with throughout my career
My Experience
A journey through my experiences, showcasing my growth, skills, and contributions in the tech industry.
Bug Hunter
Conduct vulnerability research and responsible disclosure for university and Indonesian government CSIRT systems. Discovered and reported issues including Information Disclosure, XSS, LFI, and SQL Injection. Authored detailed technical reports and mitigation recommendations, and coordinated with security teams to ensure vulnerabilities were verified and responsibly patched.
Technologies Used:
Cybersecurity Problem Setter
Designed Jeopardy-style reverse engineering challenges for qualification rounds and developed a boot2root challenge leveraging CVE exploitation and common misconfigurations. Contributed to server and network setup, deployment, and security hardening to ensure a stable and secure competition environment.
Technologies Used:
Cybersecurity Community Core TEAM
Lead and organize CTF knowledge-sharing sessions focusing on cybersecurity and reverse engineering. Conduct training and live demos on topics such as binary analysis and web exploitation. Collaborate with members on vulnerability research and participate in external CTF competitions.
Technologies Used:
Achievements & Certifications
Recognition, certifications, and milestones from my professional journey
Issued by DIY Provincial Government
Recognized for ethically reporting a time-based Blind SQL Injection vulnerability on a public service system owned by the DIY Provincial Government.
Issued by Universitas Airlangga (UNAIR)
Awarded for responsible disclosure of an Information Disclosure vulnerability discovered on one of UNAIR’s subdomains.
Issued by Samsung x Hacktiv8
Selected as a finalist in the Samsung Innovation Campus program, focusing on IoT and AI prototyping with real-world problem solving and implementation.
Issued by ITS Surabaya
Achieved national finalist status in the IDSECCONF 2024 Capture the Flag competition, specializing in reverse engineering, binary exploitation, and web exploitation.
Issued by Google Cloud
Chosen as one of the participants of #JuaraGCP 2025, an exclusive Google Cloud program designed for Indonesian developers. Through this program, I gained access to Google Cloud Skills Boost, completing hands-on labs in AI/ML, Data, Security, and Cloud computing, while engaging with industry experts and a supportive community.
Issued by TryHackMe
Completed training covering OWASP Top 10, SQL Injection, XSS, IDOR, File Inclusion, Race Conditions, and authentication bypass using hands-on labs.
Issued by TryHackMe
Completed pentesting pathway covering methodologies, Active Directory attacks, post-exploitation, Metasploit, reconnaissance, and pivoting.
Featured Projects
A collection of projects that showcase my skills in development
Latest Articles
My thoughts on technology and development
Get In Touch
Have a project in mind? Let's discuss how we can work together
Tell me about your project or ask a question