Lütfü Mert Ceylan is a Security Researcher working for two different cyber security companies in the UK and in the Netherlands as a freelancer, especially specializes in the Web Application field of Cybersecurity. He will also be a speaker at the International Cyber ​​Security conference OWASP 2023 Global AppSec Washington D.C. USA, which will be held on December 31.

He is an OWASP Project Leader and owner of the OWASP Top 25 Parameters project. He is also the OWASP Poland Chapter Board Member and the founder of TR Bug Hunters, Turkey's active security researcher & bug hunter community.

He is specifically focused about Server-side and client-side attacks. He is actively involved in the bug bounty field and he has helped detect and exploit over 500 security vulnerabilities across 75+ web applications for companies such as Apple, Oracle, Adobe, Mozilla, United Nations, European Union and 30+ more prestigious companies and organizations, then included their Hall of Fame. Also in the field of cybersecurity, he actively writes articles and writes complex code snippets with Javascript, such as creating XSS payloads with cuneiform.

He has a news article in the Portswigger about the CVE record of a vulnerability he discovered. He studies at the Warsaw University of Technology and he lives in Warsaw, Poland but in his homeland during the remaining period of his education he lives in Bursa, Turkey.