I conducted an onsite penetration test for a renowned bank to evaluate the security of its customer service network.

During the assessment, I identified a vulnerability to man-in-the-middle attacks.

By exploiting this weakness, I demonstrated the risk through the framework of blacklist authorization at the branch level.

I highlighted the vulnerability of connected devices and successfully captured credentials as proof of concept.

Additionally, I uncovered information disclosure issues, cracked passwords, dehashed, and intercepted sensitive data. This project underscored critical security gaps and provided actionable insights to enhance the bank’s network security.