- Grunt · Gaspar Onesto
Hi! I am Grunt

Cybersecurity Engineer

About me My Blog

About Me

My Certifications

OSCP+ Certification
Offensive Security Certified Professional Plus (OSCP+)
CPTS Certification
Certified Penetration Testing Specialist (CPTS)
PNPT Certification
Practical Network Penetration Tester (PNPT)
eWPT Certification
eLearnSecurity Web Application Penetration Tester (eWPTv2)
eJPT Certification
eLearnSecurity Junior Penetration Tester (eJPTv2)

I'm Grunt!

Hey! I'm Gaspar, a Computer Science student from Buenos Aires 🇦🇷 with a passion for offensive security and applied vulnerability research.

Currently, I focus on Application Security—helping dev teams secure their code throughout the SDLC. I work as a freelance security consultant, offering specialized services in Penetration Testing, DevSecOps, Cloud Security, and Security Advisory. My expertise is backed by industry-leading certifications including OSCP+, CPTS, PNPT, eJPT, and eWPT.

My core interests lie in R&D for exploit development, malware analysis, and vulnerability research. Outside of client work, I continuously enhance my skills through CTFs, specialized labs, and real-world security engagements. If you're passionate about security research or need consultation on offensive security matters, I'd love to connect!

My GitHub

You can access my GitHub portfolio by clicking here

My LinkedIn

Connect with me professionally

My Email

Reach out for collaborations

Hacking Portfolio

HackTheBox icon

HackTheBox

Red Team challenges
TryHackMe icon

TryHackMe

Red Team challenges

My Career

Education

Computer Science

Universidad de Buenos Aires, FCEyN

2020 - Present

Hackademy: Fundamentals of Hacking and Defense

Cybersecurity bootcamp | More info

2021 - 2021

Ethical Hacking - Universitary Expert Course

Universidad Tecnologica Nacional | More Info

2020 - 2021

Fullstack WebApp development

Comunidad IT | More info

2020 - 2020

Work experience

Application Security Analyst

Veritran

03/24 - 06/25

Freelance Information Security Consultant

Independent Contractor

03/23 - Currently Working Here

Security Consultant

Codefen

06/22 - Currently Working Here as a contractor

AppSec Engineer

Hackmetrix

04/22 - 03/24

DevOps Engineer

Craftech

05/21 - 04/22

Backend Developer Intern

Eudaimonia

09/2020 - 11/2020

Skills

Ethical Hacking

OSINT

NodeJS

Python

DevOps / GitOps

Kubernetes

Docker

AWS

Java

Linux

C++ / C

SDLC & AppSec Principles

Projects

Social Panic Button

Socialnet Panic Button (SPB) is an easy to use app for emergency situations.

  • Year - 2022
  • Technologies - Python, Selenium & Flask
  • Type - Cybersecurity Software

HackTheBox & TryHackMe

Cybersecurity CTF training

  • Year - 2021 - 2022
  • Type - Offensive security

Anon Land

Open source Imageboard just like was Voxed.net

  • Year - 2020 - 2021
  • Technologies - NodeJS, Angular, Ionic, Socket.io, Firebase, DigitalOcean & Docker
  • Type - Progressive Web App
Certifications
OSCP+ Badge EJPT-V2 EWPT-V2