Marius du Preez. Full-time security researcher specializing in Android apps and the web APIs behind them. 8 years in cloud infrastructure and tech, followed by 9+ years running my own businesses. That combination means I find the vulnerabilities your pentest missed.
Last updated: Jun 2026
I reverse engineer Android apps to find hardcoded secrets, broken deep link handlers, and unsandboxed WebView bridges, then follow the trail into the web APIs and backends behind them, where scanners and surface-level testers never look.
8 years in cloud migrations, VM migrations, and managing production infrastructure. I understand how backends are put together, from IAM policies to API gateways, and where the assumptions break down.
9+ years running my own businesses, managing $10k/day ad spend, and understanding how products and payment flows actually work. I find logic flaws like race conditions, privilege escalations, and payment bypasses. Not just technical bugs.
Zero-permission co-installed app silently steals session in under 5 seconds. Trading and withdrawal access confirmed.
HighMobile wallet stored and returned full card numbers and CVVs in cleartext. Zero tokenization architecture.
HighUnclaimed npm scopes in production bundles. Both orgs registered to prove exploitability across 4 brand domains.
Vulnerability research across public and private programs on Android and web. 144 reports, 60 critical findings, specializing in deep links, WebViews, APIs, and business logic.
AI-powered SEO content platform. Clients averaged 340% traffic growth in 90 days, with 85% of articles ranking top 10 within 6 months.
DeFi trading tools with the fastest and most accurate charting data. Grew to 3,000+ daily organic visitors.
Mortgage broker lead generation. Managed $10k/day in ad spend with profitable unit economics across Google and Meta.
8 years in cloud migrations, VM migrations, and managed service consulting. The foundation that makes understanding backend vulnerabilities second nature.
Available for Android and web app penetration testing and security consulting.