👋🏼
Hey! My name is
Fernando Rabasco Ledesma
A cybersecurity engineer with a software engineering background from Spain.
I'm currently digging into Solidity Security and Web3 development
I love learning about latest trends and security related issues.
About me
I'm Fernando Rabasco, a cybersecurity & software engineer based in Spain. I have been working at companies such as Nethermind & Futura Tickets.
I hold a Cybersecurity master's degree in the University Of Carlos III of Madrid. Previously, I did my major in Software Engineering in the University of Seville. Over those years, started learning on my own Blockchain and Web3, focusing in Security.
In my free time I enjoy participating in Hackathons and CTFs.
If you have any questions, ideas, or just want to connect, don't hesitate to reach out!
I'm confortable working with
Experience
Security Researcher / Auditor - Intern
Nethermind
Jun 2024 - Sep 2024
- Conducted security audits of protocol codebases, identifying and reporting vulnerabilities while providing effective mitigation strategies. - Participated in the development of an AI Security tool for detecting vulnerabilities, along with a VS Code extension to seamlessly integrate it into developers' IDEs.
Blockchain & Security Architect
Futura Tickets - Startup
Oct 2023 - Apr 2024
Ideated and developed, ensuring robust security and efficiency, the tech stack for Futura Tickets. The B2B Service Provider that offers a comprehensive ticketing solution with Non-Fungible Token (NFT).
Projects
SolidityGuard
Static analysis tool for Solidity smart contracts that detects security vulnerabilities providing a report.
STACK
A decentralized application for the management of assets and their traceability.
Stego-Tool
Steganography tool for hiding a message (password protected) in a video, using an image and an audio. The tool features two modes of operation that depend on how the secret is introduced.
EventUs
Eventus allows you organize and participate in events, as well as promotion and location renting, personal and corporate.
More Projects
Metadata-Tool
Read and manage metadata from image files in a recursive way. It also allows to extract metadata from a file and save it in a CSV file.
HIDS
Functional GUI Host-based Intrusion Detection System (HIDS) that allows to monitor the system files and detect possible intrusions.
Teamworks
A functional proof-of-concept app focused on team management, fine-grained permissions, streamlined messaging, and task manager.
Food-Scheduler
A webapp that simplifies tracking ingredients and planning of meals. It also allows to share recipes and meal plans with other users.
Certifications & Awards
ETHOnline 2024 Hackathon
Winner of Most Creative Community App 🏆 by Sign Protocol. Real You is a decentralized social platform promoting authentic content.
See more
ETHOnline 2024 Hackathon
ETHGlobal Brussels Hackathon
🏆 5 tracks; Celo, Arbitrum, Hyperlane, Flare Network & Blockscout. Net Zero, a carbon footprint offset application for companies, with gamification & funding capabilities.
See more
ETHGlobal Brussels Hackathon
U-Hack Project Winner
Winner of the U-Hack Web 3.0 Hackathon with Ritzy Protocol. A decentralized Phygital marketplace enhancing security and interaction with NFC tech.
See more
U-Hack Project Winner
ETHGlobal London Hackathon
Winner of Arbitrum & Chilliz PrizePool. Created Zycket, a versatile ticketing system with blockchain interoperability and account abstraction.
See more
ETHGlobal London Hackathon
eCPPT Certification
Certified Profesional Penetration Tester. Demonstrate a proficiency in Pivoting, Manual Exploitation, Information Gathering, Reconnaissance, and Exploit Development
See more
eCPPT Certification
Vottun & DEXTools Hackathon
Winner of the Rootstock Challenge. Developed a blockchain B2B2C eLearning solution using NodeJS, NextJS & Solidity Smart Contracts.
See more
Vottun & DEXTools Hackathon
Purple Team Analist V2
Certification awarded by CWL, after completing the course, which covers the following topics: Adversary Simulation & Detection, MITRE Framework, Suricata & Wazuh
See more
Purple Team Analist V2
Solidity Expert Bootcamp
Participated in the Solidity Bootcamp, by Encode. Covering the following topics: EVM in detail, Opcodes, Yul Assembly, Gas Optimization, Smart Contract Security
See more
Solidity Expert Bootcamp
School of Solana Course
Participated in the School Of Solana Course, by Ackee Blockchain. Covering the following topics: Rust, Solana-onchain Programs, Anchor Framework, Best Development practices
See more
School of Solana Course
Cardano Blockchain Certified
Adquired the certification Cardano Blockchain Certified Associate (CBCA). Coursework: Blockchain Foundations, Transactions Models, Genesis & genesis entities.
See more
Cardano Blockchain Certified
Binance & Heretics Hackathon
Developed TH3 HUB, an initiative for esports clubs to level-up their fanbase. A functioning metaverse with Unreal Engine, and a marketplace. Runner-up.
See more
Binance & Heretics Hackathon
BBVA Hackathon Winner 2022
Winner of the Microsoft challenge. Developed a two-solution project for small businesses and customers. Created with React & Solidity.
See more
BBVA Hackathon Winner 2022
Huawei Seeds for the Future
Participated in the TIKER program, adquiring top-notch knowledge, as well as participating in the Tech4Good challenge, leveraging technology for SDGs related solutions.
See more
Huawei Seeds for the Future
Hunger4Innovation Hackathon
Winners of the Hotelbeds challenge. Developed a solution for the tourism industry, leveraging data mining and analysis.
See more
Hunger4Innovation Hackathon
Blog
Damn Vulnerable DeFi v3 - Unstoppable 1
Walkthrough of the first challenge of the Damn Vulnerable DeFi v3 CTF. Unstoppable consists of a smart contract that allows users to deposit and withdraw funds, as well as borrow and repay loans. The goal is to exploit a vulnerability in the smart contract to steal all the funds.
Hack The Box - Laboratory Setup
A step-by-step guide to start practicing ethical hacking in hack the box and start your Cybersecurity path. Provides a guide to set up a laboratory in Windows (through Virtual Machine, VPS or WSL) or Linux devices, with several options to be able to attack vulnerable machine with Hack The Box.
