Tamer Şahin
This biographical article is written like a résumé. (May 2024) |
Tamer Şahin | |
---|---|
Born | |
Occupation(s) | Information technology consulting, White hat Hacker, Public Speaker, Author |
Website | tamersahin |
Tamer Şahin (born in İzmir, Turkey) is a Turkish white hat hacker living in the United States.
Overview
[edit]Şahin's interest in computers started when he was 13 years old.
Şahin worked on the philosophy of Ethical Hacking and concentrated on institutionalizing his professional life.
He has consulted on various cases concerning cyber security at both national and international level. He used his talent as an Ethical Hacker to detect the vulnerabilities of numerous computer systems and developed defense strategies for some of the leading organizations in the private sector and also public institutions.
The New York Times journalist [1] and US Cybersecurity and Infrastructure Security Agency advisor[2] Nicole Perlroth, referred in her best seller book "This Is How They Tell Me the World Ends", to Tamer Sahin and described him as "the first person in the world who found and sold a Zero Day vulnerability". He began discovering and selling security vulnerabilities to iDefense shortly after their vulnerability contribution program was established, ultimately discover and sell over 50 zero-day vulnerabilities and exploits.[3]
Şahin discovered critical zero-day security vulnerabilities in some software companies’ products and published the security vulnerability announcements on global security platforms. He enriched the field of information security by publishing more than 50 security advisories registered under his name. Collaborating with world-renowned software developers like Microsoft, HP, Redhat, Debian and OpenBSD, he identified zero-day vulnerabilities in their software.[4]
Şahin lectures about being a ethical hacker and its philosophy at universities and he gives consultant services to firms (information security contracts stay always confidential) about information security. He wrote about his experiences in the book “Hacker’in Akli” (Eng: Hacker’s Mind), published by "Dogan Kitap". The book made three editions, was on the bestseller list for a month. It is listed in the archives of the Library of Congress Washington DC,[5] Princeton University,[6] Columbia University,[7] Harvard University,[8] Library of Grand National Assembly of Turkey, Patrick Henry College,[9] Salem College,[10] Birmingham-Southern College.[11] He is a graduate of the Faculty of Economics, Department of International Relations.
References
[edit]- ^ "Nicole Perlroth The New York Times Profile". The New York Times.
- ^ "CISA Names 23 Members to New Cybersecurity Advisory Committee | CISA". www.cisa.gov. December 2021. Retrieved 25 December 2022.
- ^ Perlroth, Nicole (2021-02-09). This Is How They Tell Me the World Ends: The Cyberweapons Arms Race. Bloomsbury Publishing USA. ISBN 978-1-63557-606-1.
- ^ An incomplete list:
- First Active2001-12-17 Last Active2002-12-21. "Files from Tamer Sahin ≈ Packet Storm". Packetstormsecurity.org. Retrieved November 12, 2011.
{{cite web}}
: CS1 maint: numeric names: authors list (link) - "LocalWEB 2000 Insecure Password Storage". Verisign. Retrieved November 12, 2011.
- "Denial of Service Vulnerability in Xeneo Web Server". Verisign. Retrieved November 12, 2011.
- "DoS and Directory Traversal Vulnerabilities in WebServer 4 Everyone". Verisign. Retrieved November 12, 2011.
- "Directory Traversal in Dino's Webserver". Verisign. Retrieved November 12, 2011.
- 3APA3A (January 19, 2007). "Search:Author – Computer security: vulnerabilities and exploits database". Securityvulns.com. Retrieved November 12, 2011.
{{cite web}}
: CS1 maint: numeric names: authors list (link) - "Sambar Server Sample Script Denial Of Service Vulnerability". Securityfocus.com. January 16, 2002. Retrieved November 12, 2011.
- "EServ Password-Protected File Access Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "AOLServer Password Protected File Arbitrary Read Access Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "ZBSoft ZBServer Buffer Overflow Vulnerability". Securityfocus.com. December 23, 1999. Retrieved November 12, 2011.
- "Essentia Web Server Long URL Buffer Overflow Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- http://www.securityfocus.com/bid/3714
- "Basilix Webmail Incorrect File Permissions Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Essentia Web Server Directory Traversal Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Agora.CGI Debug Mode Cross-Site Scripting Vulnerability". Securityfocus.com. December 17, 2001. Retrieved November 12, 2011.
- "John Roy Pi3Web For Windows Long Request Buffer Overflow Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Stronghold Secure Server Path Information Disclosure Vulnerability". Securityfocus.com. May 21, 2002. Retrieved November 12, 2011.
- "MDG Computer Services Web Server 4D/eCommerce DoS Vulnerability". Securityfocus.com. January 14, 2002. Retrieved November 12, 2011.
- "Summit Computer Networks Lil' HTTP Server Directory Disclosure Vulnerability". Securityfocus.com. February 21, 2002. Retrieved November 12, 2011.
- "Nombas ScriptEase:WebServer Edition Denial of Service Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Michael Lamont Savant Web Server Long Request DoS Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Radiobird Software WebServer 4 All Host Field Header Buffer Overflow Vulnerability". Securityfocus.com. October 23, 2002. Retrieved November 12, 2011.
- "Mollensoft Software Enceladus Server Suite FTP Command Buffer Overflow Vulnerability". Securityfocus.com. December 9, 2002. Retrieved November 12, 2011.
- "BlueFace Falcon Web Server File Disclosure Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "RadioBird Software WebServer 4 All Buffer Overflow Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Microsoft ISA Server Denial of Service Vulnerability". Securityfocus.com. November 2, 2001. Retrieved November 12, 2011.
- "MDG Web Server 4D Insecure Credential Storage Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "RadioBird Software WebServer 4 All Directory Traversal Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Working Resources BadBlue Double Slash Directory Access Control Circumvention Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "LiteServe Web Server File Disclosure Vulnerability". Securityfocus.com. October 24, 2002. Retrieved November 12, 2011.
- "Netcharts Server Chunked Encoding Information Leakage Vulnerability". Securityfocus.com. February 18, 2003. Retrieved November 12, 2011.
- "Northern Solutions Xeneo Web Server Denial Of Service Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Polycom ViewStation Plain Text Administrative Password Vulnerability". Securityfocus.com. December 20, 2002. Retrieved November 12, 2011.
- "MRTG Configuration Generator Path Disclosure Vulnerability". Securityfocus.com. February 4, 2002. Retrieved November 12, 2011.
- "BRS WebWeaver Web Server File Access Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Simple Web Server File Disclosure Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- "Novell GroupWise Web Root Disclosure Vulnerability". Securityfocus.com. February 28, 2002. Retrieved November 12, 2011.
- "HP AdvanceStack Switch Authentication Bypass Vulnerability". Securityfocus.com. February 8, 2002. Retrieved November 12, 2011.
- "Dino's Webserver File Disclosure Vulnerability". Securityfocus.com. Retrieved November 12, 2011.
- First Active2001-12-17 Last Active2002-12-21. "Files from Tamer Sahin ≈ Packet Storm". Packetstormsecurity.org. Retrieved November 12, 2011.
- ^ National Library of Congress Washington DC. Doğan Kitap. 2012. ISBN 9786050911107. OCLC 855220832.
- ^ Şahin, Tamer (2012). Princeton University Library. ISBN 9786050911107.
- ^ "CLIO Search Results". clio.columbia.edu. Retrieved 25 December 2022.
- ^ "Harvard University Library".
- ^ "Patrick Henry College Library".
- ^ "Salem College Library".
- ^ "Birmingham-Southern College Library".