Patrick Hener

Althengstett, BW · patri-remove-ckhener@posteo.de

IT-Security Expert and IT enthusiast

I am currently employed by CODE WHITE GmbH, where I work as a Full Time Bug Hunter and Red Teamer (Senior Penetration Tester)

I am a family man with a heart beating for IT-Security and coding. After managing vocational training I gathered experience in medium-sized companies in Germany. I was then given the opportunity to shift into IT-Security. After implementing security solutions for years I wanted to develop myself further and switched sites to offensive security and pentesting. I was then hired by a big security company in Tübingen where I do about three years to get me started with penetration testing. After coming back to my IT-Sec roots and working for Thinking Objects GmbH again as a penetration tester I once again shifted towards Bug Hunting and Red Teaming and am working now for Code White GmbH in Ulm as a Senior Penetration Tester.

CV

Socialization

Education

IT-Schule Stuttgart

Fachinformatiker Systemintegration

2008 - 2011

Maria-von-Linden Gymnasium

Abitur

until 2008

Experience

Bug Hunting and Red Teaming (Senior Penetration Tester)

Code White GmbH

I am a full time Bug Hunter reporting the worst of the worse bugs to our customers. Using and developing own tooling and publicly available knowledge I discover and exploit bugs to see if I can compromise Servers/Apps and gain a foothold on the customers edge systems. I am also doing internal assessments and hunt for severe bugs in customers internal networks. Besides that I am doing security research with the goal to responsibly disclose security bugs to vendors.

January 2023 - today

IT-Security Consultant (Pentesting)

Thinking Objects GmbH

I basically do the same thing as I did with SySS GmbH, but within a smaller company.

May 2021 - December 2022

IT-Security Consultant (Pentesting)

SySS GmbH

As a pentester I specialised myself in testing web applications and perimeter system, as well as attacking corporate networks based on a Microsoft Active Directory. I am currently learning all the skills needed for red team assessments, which are for example targeted phishing or physical assessments.

March 2018 - April 2021

IT-Security Consultant

Thinking Objects GmbH

In this function I was implementing security solutions like firewalls and endpoint security suites. I was also holding training sessions with content mainly focusing on IT-Security. Also I was author of several blog posts.

2012 - 2017

IT Consultant

Computacenter AG & Co oHG

In this function I was implementing network solutions mainly based on Cisco related hardware. I was trained to implement Cisco switches and routers, as well as wifi hardware.

2008 - 2012
Nifty tech tag lists from Wouter Beeftink