Skip to content
View marksowell's full-sized avatar
💻
Focusing
💻
Focusing

Organizations

@zoom

Block or report marksowell

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
marksowell/README.md

Mark Sowell

Hi! I'm Mark

I am an experienced penetration tester with a focus on application security in the following areas:

  • Web applications
  • Mobile applications
  • Desktop applications
  • APIs, SDKs, and Web Services
  • Cloud applications
  • Microservices and containerized applications
  • Serverless applications

Over the years, I have developed extensive experience in orchestrating comprehensive security assessments for a diverse range of applications and cultivated expertise in:

  • Strategic Leadership: Defining methodologies, innovating toolsets, and setting best practices that steer effective and efficient penetration testing.
  • Consulting: Serving as a principal application security consultant specializing in web, mobile (Android & iOS), automotive, desktop, and API testing.
  • Mentorship: Empowering the next generation of security experts through training, guidance, and thought leadership.
  • Collaboration: Bridging gaps between security teams, fostering a collaborative environment to collectively drive application resilience.
  • Remediation: Identifying and developing remediation strategies for security findings and bug bounty reports, collaborating with development teams to ensure effective implementation.
  • Comprehensive Security Assessments: Executing a wide range of penetration tests including external, internal, and application testing for global clients in various sectors, leading projects from scoping to detailed reporting and remediation.

I am passionate about strengthening the security posture of applications, constantly evolving my techniques to stay ahead of emerging threats, and ensuring the highest standards of application security.

Here are some stats about the languages I use in my repositories:

Top Langs

Connect with me

marksowell.com    Mark Sowell | LinkedIn    Mark Sowell | X    Mark Sowell | GitHub    Mark Sowell | Slack    Mark Sowell | Discord    Mark Sowell | YouTube    Mark Sowell | Telegram    Mark Sowell | Medium

Research platforms

Mark Sowell | TryHackMe    Mark Sowell | Hack The Box    Mark Sowell | HackerOne    Mark Sowell | Bugcrowd   

Certifications

Mark Sowell | Credly

Mark Sowell | EC-Council


Bookshelf

Goodreads Logo

Scrolling Image

Pinned Loading

  1. burp-collaborator-deploy burp-collaborator-deploy Public

    Deploy a Private Burp Collaborator server with a wildcard Let's Encrypt SSL certificate including automatic renewal for advanced penetration testing. Includes scripts and guides for a seamless clou…

    Shell 1

  2. aws-account-finder aws-account-finder Public

    Find an AWS Account ID from any S3 Bucket

    Python 2

  3. Info-Leakage Info-Leakage Public

    Burp Suite extension designed to help security professionals search for custom sensitive information in HTTP responses

    Python 7 1

  4. Findings-Tracker Findings-Tracker Public

    Burp Suite extension designed to help security professionals manage and track web application security findings

    Python 1

  5. SSL-Labs-Screenshot SSL-Labs-Screenshot Public

    A Python package to capture a trimmed screenshot of the SSL Labs report for a given domain.

    Python 1

  6. stars stars Public

    A curated list of my GitHub stars!

    3 1