Portrait of Waris Damkham

Waris Damkham

Offensive Security Engineer · AI Security Researcher · Security Builder

Red Teaming • AI Security • Identity & AppSec

About Me

I am an Offensive Security Engineer, AI Security Researcher, and Security Builder with 2+ years of hands-on experience across enterprise penetration testing, red team operations, applied security research, and AI-assisted security automation.

My professional work includes end-to-end security assessments across web applications, APIs, mobile applications, and infrastructure, alongside red team operations focused on real-world attack scenarios, identity abuse, and security posture improvement. I also build security automation and AI-assisted offensive tooling for vulnerability analysis, alert triage, and black-box penetration testing.

As an independent researcher-builder, I investigate security issues, develop proof-of-concept tools, create reproducible labs, and publish technical research. My work includes identity and access security research involving Microsoft 365 Conditional Access, as well as Oblivion Token, an offensive research tool presented at Black Hat Asia 2026 Arsenal and DEF CON Singapore 2026 Demo Labs.

Selected outputs include 28 CVEs and 3 IEEE publications across Android OAuth 2.0 security testing and applied AI/ML systems. I am open to global opportunities in Offensive Security Research, Vulnerability Research, AI Security, Red Team Engineering, Application Security, and graduate research pathways.

LinkedInGitHubResearchGateCredlyTryHackMeHackTheBoxHack The Box LabsCredential.NetMedium

Experience

Offensive Security Engineer at KASIKORN Business-Technology Group

Offensive Security Engineer

KASIKORN Business-Technology GroupFull-timeNov 2024 - Present · 1 yr 9 mosBangkok, Thailand 🇹🇭 · Hybrid
  • Delivered 40+ penetration tests across annual assessments and major-change projects, and contributed as a core member of advanced Red Team engagements, translating findings into practical remediation actions.
  • Supported SSE security testing, including AI Prompt Gateway testing, guardrail validation, and Thai/English attack scenarios.
  • Owned 10+ major security assessment projects across 2025–2026, leading planning, testing oversight, reporting, stakeholder communication, and remediation follow-up.
Cybersecurity Consultant (Penetration tester) at ALPHASEC

Cybersecurity Consultant (Penetration tester)

ALPHASECFull-timeJun 2024 - Oct 2024 · 5 mosBangkok, Thailand 🇹🇭 · Hybrid
  • Conducted in-depth penetration testing of IT infrastructure, identifying vulnerabilities in operating systems, applications, configurations, and user behavior.
  • Specialized in web, mobile, and software vulnerability assessments following OWASP Top 10 and industry best practices.
  • Delivered detailed security reports with actionable remediation steps to strengthen clients’ overall security posture.
  • Worked cross-functionally with development and infrastructure teams to ensure timely remediation of security risks.
  • Successfully completed 16 security assessment projects during the engagement.
Cybersecurity Consultant (Penetration tester) at KPMG Thailand

Cybersecurity Consultant (Penetration tester)

KPMG ThailandInternshipJan 2024 - Apr 2024 · 4 mosBangkok, Thailand 🇹🇭 · Hybrid
  • Assisted in conducting penetration tests on software, mobile, and web applications using tools such as Kali Linux and Burp Suite.
  • Followed OWASP best practices to identify and document security vulnerabilities and simulate real-world cyberattacks.
  • Performed vulnerability assessments on KPMG’s internal network using Nessus and other scanning tools.
  • Contributed to the development of a secure internal website, incorporating security-by-design principles.
  • Completed 2 penetration testing projects and 1 vulnerability assessment project, improving communication of complex findings to stakeholders.

Talks & Contributions

ContributionPublished
UploadSmith listed on the Caido Plugin Store
Caido Plugin Store

Built and released UploadSmith, a focused Caido plugin for file upload testing workflows. The plugin helps testers quickly mutate Content-Type values, filename extensions, and magic byte payloads directly inside Caido’s request editor.

Open-source security toolingJun 2026
Demo LabsPresented
Oblivion Token: M365 Conditional Access Policy Bypass OST (Offensive Tooling)
DEF CON Singapore 2026 Demo Labs

Presented for DEF CON Singapore 2026 Demo Labs. Oblivion Token is an offensive research utility for practical, repeatable testing of Microsoft 365 Conditional Access (CA) edge cases. It systematizes token-centric workflows to help identify where device, network, or app-context assumptions can fail in real-world environments.

Marina Bay Sands, SingaporeApr 28-30, 2026
ArsenalPresented
Oblivion Token: M365 Conditional Access Policy Bypass OST (Offensive Tooling)
Black Hat Asia Arsenal 2026

Presented at Black Hat Asia 2026 Arsenal. Oblivion Token is an offensive research utility for practical, repeatable testing of Microsoft 365 Conditional Access (CA) edge cases. It systematizes token-centric workflows to help identify where device, network, or app-context assumptions can fail in real-world environments.

Marina Bay Sands, SingaporeApr 23-24, 2026

Research & Publications

Offensive Research Tool2026
Oblivion Token: M365 Conditional Access Policy Bypass OST (Offensive Tooling)

Black Hat Asia 2026 Arsenal and DEF CON Singapore 2026 Demo Labs

Oblivion Token is a focused offensive-research utility that makes Microsoft 365 Conditional Access Policy (CAP) bypass testing practical, repeatable, and scriptable. Designed for red-teamers and security researchers, it systematizes token-centric workflows and exercises policy edge cases to expose where device, network, or app-context assumptions fail including realistic test paths against Microsoft first-party (built-in) applications.

Apr 23-30, 2026
TENCON 20242024
Practical Mobile Based Services for Identification of Chicken Diseases From Fecal Images

IEEE Region 10 Conference 2024

Poultry farming is crucial to the food chain, and chicken health directly impacts product quality and safety. Diagnosing poultry diseases using polymerase chain reaction is costly, particularly for small farms. To address this, we developed a mobile-based service for farmers, enabling the identification of common chicken diseases from fecal images via a Line account. Our system achieved 86.49% segmentation precision and 95.93% classification accuracy on a large dataset, offering a practical and accessible tool for local farmers.

March 5, 2025
QRS 20232023
Detecting Vulnerable OAuth 2.0 Implementations in Android Applications

23rd IEEE International Conference on Software Quality, Reliability, and Security

OAuth 2.0, commonly used for authorization, can be susceptible to CSRF attacks in Android applications. To address this, we developed an Android app to assess other apps' use of the OAuth 2.0 state parameter—a key defense against CSRF. Our analysis, conducted on both Chrome and the default browser, evaluates whether Android apps using OAuth 2.0 are adequately protected against CSRF attacks. Our research aims to protect users by highlighting apps with potentially vulnerable OAuth 2.0 implementations.

February 19, 2024

Security Vulnerabilities (CVEs)

Total 28Critical 4High 9Medium 15Low 0Latest Apr 8, 2026
Critical
CVE-2026-1830
Quick Playground

The Quick Playground plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.3.1. This is due to insufficient authorization checks on REST API endpoints that expose a sync code and allow arbitrary file uploads. This makes it possible for unauthenticated attackers to retrieve the sync code, upload PHP files with path traversal, and achieve remote code execution on the server.

Apr 8, 2026
Medium
CVE-2026-4766
Easy Image Gallery

The Easy Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Gallery SHORTCODE post meta field in all versions up to, and including, 1.5.3. This is due to insufficient input sanitization and output escaping on user-supplied gallery SHORTCODE values. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Mar 20, 2026
Medium
CVE-2026-2720
Hr Press Lite

The Hr Press Lite plugin for WordPress is vulnerable to unauthorized access of sensitive employee data due to a missing capability check on the `hrp-fetch-employees` AJAX action in all versions up to, and including, 1.0.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to retrieve sensitive employee information including names, email addresses, phone numbers, salary/pay rates, employment dates, and employment status.

Mar 20, 2026

Projects

Credentials & Recognition

Blue Team / DetectionJuly 08, 2026

Hack The Box Certified Defensive Security Analyst

Hack The Box

View Credential
AI SecurityJun 30, 2026

Certified Artificial Intelligence Security & Risk (CAISR)

Red Team Leaders

View Credential
Blue Team / DetectionJun 2026

Incident Responder Training Completion

Group‑IB

View Credential
Mobile / WirelessJun 2026

iOS Application Exploitation Challenges (4/11 Labs Completed)

8kSec

View Credential
Offensive SecurityJun 2026

ARM Exploitation Challenges (2/10 Labs Completed)

8kSec

View Credential
AwardsMay 2026

KBTG Star Award 2025: Rising Star Award

KASIKORNBANK

View Credential

Capabilities & Tools

Offensive Security & Red Teaming

Hands-on assessment, adversary simulation, exploitation, and vulnerability validation.

Penetration TestingRed TeamingWeb ExploitationNetwork ExploitationPrivilege EscalationBurp SuiteKali LinuxNmapMetasploitsqlmapHydraHashcatJohn the RipperWiresharkNessus
Application, API & Mobile Security

Security review and testing across web, API, mobile, OAuth, and Android attack surfaces.

Application SecurityAPI SecurityMobile SecurityAndroid SecurityOAuth 2.0OIDCOWASP Top 10MobSFADBPostman
Identity, Cloud & M365 Security

Identity-centered cloud security research, policy testing, and Microsoft 365 attack paths.

Microsoft Entra IDMicrosoft 365Conditional AccessMicrosoft Graph APIAzureAWSCloud Security
AI, LLM & Machine Learning

AI security readiness, LLM threat modeling, and applied machine-learning research experience.

AI SecurityLLM SecurityAI Red TeamingPrompt InjectionMCP SecurityOWASP LLM Top 10TensorFlowKerasPyTorchOpenCVPandasNumPyYOLOResNet50
Security Automation & Engineering

Automation and engineering used to scale testing, reporting, triage, and repeatable workflows.

PythonJavaScriptBashPower AutomatePower AppsGitHub ActionsSeleniumpytestRobot FrameworkGit
Software, Web & Backend Engineering

General software engineering, frontend/backend development, and project delivery experience.

JavaCDartReactNode.jsNext.jsFlaskSpring BootHTMLCSSTailwind CSSBootstrapFirebaseElasticsearchMongoDBMySQL
Cloud, DevOps & Infrastructure

Cloud platforms, deployment, CI/CD, containers, and infrastructure operations.

AWSAzureHuawei CloudDockerOpenShiftNginxGitHub PagesJenkinsGradleMavenAntPM2
Reporting, Research & Communication

Turning technical findings into clear executive, engineering, academic, and public-facing output.

Executive ReportingTechnical ReportingVulnerability TriageCVE ResearchRisk CommunicationSecurity BriefingPublic SpeakingConference DemosChallenge AuthoringKnowledge SharingMarkdownLaTeX
Productivity & Collaboration

Workplace tools used for documentation, presentation, workflow automation, and team collaboration.

Microsoft WordMicrosoft PowerPointMicrosoft ExcelPower AutomatePower AppsCopilot StudioLINE Official Account

Education

Mahidol University

Bachelor of Science (Information and Communication Technology)International Program2020 - 2024Thailand 🇹🇭
ICT Internship Poster Exhibition 2023 at ICT MahidolSep 2023

Joined the exhibition showcasing B.Sc. ICT International Program student internships. Proudly shared my experience from Ritsumeikan University among esteemed peers. An enriching platform for insights and networking.

Bangkok Christian College

GPAX 3.48Smart Computer2008 - 2020Thailand 🇹🇭
Portfolio

University application portfolio and supporting academic showcase.

Competitions

Blog

My Resume

resume.pdf - waaris_m@portfolio

Download or preview my latest resume.