OT/ICS & Critical-Infrastructure Security · Founder & CTO @ GNSAC
Securing the systems that run water, power, factories and finance.
I'm a security engineer and founder with 16+ years defending operational technology (OT/ICS) and critical infrastructure — SCADA/ICS security, Purdue-model network segmentation, Palo Alto NGFW architecture, and SOC/SIEM/SOAR operations for regulated organisations across critical infrastructure, finance, healthcare and manufacturing.
I build in the open: a growing portfolio of free, MIT-licensed security tools used by defenders worldwide.
GNSAC Bilişim Teknolojileri Ltd. Şti. (Istanbul) builds and operates security products for critical-infrastructure and regulated organisations — not one-off consulting, but continuous, measurable defence:
- Vigil — threat-intelligence & credential-exposure monitoring
- Phishing — phishing-simulation & security-awareness platform
…backed by senior-led security engineering across application security, SOC monitoring, threat intelligence and attack-surface management.
⭐ exposure-check · find what attackers can see before they do
A fast Go scanner for GitHub organisations, repositories and domains — leaked
secrets, risky GitHub Actions workflows, missing security controls and attack-surface
exposure. Text / JSON / Markdown / HTML / SARIF reports, CI-native, ships as a
GitHub Action. go install github.com/bariskececi/exposure-check@latest
| Tool | What it does | Launch |
|---|---|---|
| Blackout | Cinematic ICS attack simulator — launch real ATT&CK-for-ICS techniques on a live plant, then defend | ▶ live |
| Exposed | Live survey of internet-facing critical infrastructure + a personalised action plan | ▶ live |
| Rampart | Turn your OT zones into a deny-by-default segmentation policy (Palo Alto / FortiGate / Juniper / iptables / ASA) | ▶ live |
- Strata — passive OT asset & flow mapping from a packet capture, mapped to the Purdue model
- Mirage — low-interaction OT honeynet that catches attackers probing the network
- Triage — OT vulnerability prioritisation with CVE + CISA KEV + EPSS (not just CVSS)
- Vantage — red-team OT assessment & adversary-emulation planning mapped to MITRE ATT&CK for ICS
- Aether — passive RF detection of rogue wireless emitters and hidden modems
I write about industrial cybersecurity, credential exposure and secure engineering on HackerNoon:
- What I learned scaling a credential-exposure engine to 3.8 billion records
- Building a multi-channel phishing-simulation platform in Go for regulated industries
Website · LinkedIn · HackerNoon
All tools are educational & defensive — scan assets you own or are authorised to assess.