Suphawith Phusanbai

Security Researcher / Penetration Tester

Security Contributions Across Enterprise, Government, & Open Source

About Me

I'm a penetration tester with an appetite for challenging security problems and a solo cybersecurity researcher in my free time.

Curiosity drives everything I do. I usually start with questioning the issue, making an assumption, finding the root cause, articulating attack possibilities, and then exploiting it. I like to apply Socratic questioning in every decision I make!

Penetration TestingCVE ResearchBug BountyOpen Source

GitBook Blog

Read My Security Research Blog

From vulnerability discovery to exploitation — practical write-ups based on real-world targets.

Corporation & Government

Open Source Software

Published

SuiteCRM

SECURITY REPORT

Published

Ever® Traduora

SECURITY REPORT

Published

Watcharr

SECURITY REPORT

Published

UnoPIM

SECURITY REPORT

Published

InnoShop

SECURITY REPORT

And more...

View GitHub

Public Advisories & Exploits

Published

Exploit-DB

View Advisory

Published

Snyk

View Advisory

Published

GitHub Advisory

View Advisory

Achievements

Women Thailand Cyber Top Talent 2024

Web App Category (Junior & Open Challenge Labs)

Lab Creator

LinkedIn Profile

GitHub Profile

Suphawith Phusanbai

Security Researcher / Penetration Tester

Read My Security Research Blog

Corporation & Government

Microsoft

HP

Sony

Electronic Arts

Razer

ThaiCERT

Tomtom

AON

Open Source Software

SuiteCRM

Ever® Traduora

Watcharr

UnoPIM

InnoShop

And more...

Public Advisories & Exploits

Exploit-DB

Snyk

GitHub Advisory

Achievements

Women Thailand Cyber Top Talent 2024