Nwaorgu Blessing Chidiebube — Cybersecurity Expert

Profile

Get to Know
Blessing Chidiebube

I am Nwaorgu Blessing Chidiebube, a cybersecurity expert specializing in Ethical Hacking, Web Penetration Testing, Application Security (AppSec), Network & Infrastructure Security, and Mobile & API Penetration Testing. My approach combines structured methodology with hands-on execution, working directly on real-world corporate and Web3 environments to identify weaknesses, evaluate security posture, and deliver actionable remediation guidance.

I have conducted full-scope web penetration tests on both traditional websites and modern web applications in live production environments. My workflow spans passive and active reconnaissance, vulnerability enumeration, exploitation, and responsible reporting, delivered with professionalism and discretion for each client.

Growth is deliberate and ongoing. I am continuously expanding my capabilities across offensive security, AppSec tooling, and secure development principles, building a body of work that reflects both technical depth and professional integrity. My long-term mission is to operate as a trusted security professional whose value is measured by results, rigor, and ethical practice.

Primary Focus

Application Security & Web Penetration Testing

Methodology

Reconnaissance → Assessment → Exploitation → Responsible Reporting

Engagement Status

Open to freelance engagements

Capabilities

Core Focus Areas

Security domains where I apply structured methodology, practical tooling, and real-world experience.

Ethical Hacking

Systematic offensive security testing to identify and demonstrate exploitable vulnerabilities before adversaries do — with full authorization and responsible handling. Aligned with CEH and OSCP methodology.

CEH · OSCP

Web Penetration Testing

End-to-end web penetration testing covering reconnaissance, enumeration, exploitation, and professional reporting for live web targets. Methodology aligned with GWAPT and PNPT standards.

GWAPT · PNPT

Application Security (AppSec)

Assessing web applications for logic flaws, injection points, broken authentication, and misconfigured security controls across the full attack surface. Grounded in OWASP Top 10 and CPT frameworks.

CPT · OWASP

Network & Infrastructure Penetration Testing

Identifying and exploiting vulnerabilities within internal and external network infrastructure — including misconfigured services, insecure protocols, and privilege escalation paths. Aligned with OSCP and PNPT.

OSCP · PNPT

Mobile & API Penetration Testing

Security testing of mobile applications and REST/GraphQL APIs for authentication bypasses, data exposure, and injection vulnerabilities. Methodology aligned with OWASP Mobile Top 10 and GWAPT.

GWAPT · OWASP Mobile

Bug Bounty & Vulnerability Research

Proactively researching vulnerabilities across web and mobile platforms with responsible disclosure practices. Scoping, recon, and reporting aligned with CEH and CPT certification standards.

CEH · CPT

Reconnaissance & Exploitation

Comprehensive passive and active information gathering using OSINT techniques, followed by targeted, controlled exploitation, a core discipline across OSCP, PNPT, and CEH paths.

OSCP · PNPT · CEH

Secure Development Awareness

Understanding the developer's perspective to identify where security gaps originate — enabling more precise testing and actionable remediation. Supported by CPT and GWAPT secure coding principles.

CPT · GWAPT

Projects Handled

Real-world security assessments conducted on live production environments. Findings are responsibly reported and remediation clearly recommended.

Project Handled · Web

SpeedlinkNG

Client: Speedlinkng · Platform: Website

Service: Full web pentesting & Finding vulnerability and providing mitigation.

Conducted a comprehensive web penetration test on a live website. The engagement covered full reconnaissance, vulnerability identification across the web surface, security posture analysis, and delivery of a structured report with prioritised remediation guidance.

Web Pentest Recon Vulnerability Assessment Remediation Report

Client Site

Project Handled · Web3 Platform

Rebirth Odyssey — Full Web & Application Security Assessment

Client: Rebirth Odyssey · Platform: Website + Web Application (Web3)

Performed full-scope penetration testing across both the primary website and the web application. The engagement included passive and active reconnaissance, vulnerability discovery, exploitation of identified weaknesses, application security assessment specific to Web3 attack vectors, and implementation of additional security hardening measures alongside the final report.

Full Web Pentest AppSec Assessment Web3 Reconnaissance Security Hardening

Web App

Upcoming Project

Next Engagement

Currently in discussion — more security work to be documented here.

Growth

Actively Developing
Expertise In

Structured, continuous skill development across offensive security, application security, and research methodologies.

Active · OSCP Path

Advanced Ethical Hacking & Exploitation

Buffer overflows, privilege escalation, post-exploitation

Active · GWAPT / CPT Path

Application Security Testing

OWASP testing guide, SAST, DAST tooling

Active · PNPT Path

Network & Infrastructure Pentesting

Active Directory, lateral movement, pivoting

In Progress · GWAPT Path

Mobile & API Security Testing

OWASP Mobile Top 10, REST/GraphQL attack vectors

In Progress · CEH / CPT Path

Bug Bounty Methodologies

Scoping, recon, responsible disclosure workflows

Exploring · Web3

Smart Contract & Web3 Security

Blockchain vulnerability research, DeFi attack surfaces

Blessing Chidiebube

Get to KnowBlessing Chidiebube