Senior Security Consultant

Quebec City, Canada

Profile image for Patrick Mathieu

Patrick is the co-founder of, the largest hacking event in Canada, and has been involved in computer security for more than 20 years. He works as a pentester, leads purple-team engagements, and specializes in application security.

Patrick is currently a Senior Consultant at Security Compass and holds a Bachelor and a DEC in computer science. He has always been active in the community and within security events.

Areas of Expertise:
Advisory Services
  • Application Security Baseline and Framework Development
  • Agile Security Advisory
  • Secure Development Standards
Verification Services
  • Web Application Vulnerability Assessment
  • Source Code Review
  • Red Team, Blue Team & Purple Team Exercises
  • Financial Services
  • Technology
  • Retail

B.Sc - Computer Science
Université de Sherbrooke
Sherbrooke, Quebec, Canada

DEC - Computer Science
Cégep de Limoilou
Québec City, Quebec, Canada

  • BurpSmartBuster - A Smart Way to Find Hidden Treasures (DerbyCon, 2016) view repo
    • Bruteforcing non-indexed data is often used to discover hidden files and directories which can lead to information disclosure, or even a system compromise when a backup file is found. This bruteforce technique is still useful today, but the current tools aren’t stealthy, lack application context, and do not integrate smart behaviour to reduce the bruteforce scanning time. BurpSmartBuster, a new Burp Suite plugin, offers to include the application context, putting the Smart into the Buster! Watch presentation
Press Mentions:
  • Le monde à la merci des hackers? listen
  • Pirater un téléphone - si simple que ça ?? (CHOI 98.1 Radio, 2016) listen
Events & Associations:
Back to Our People

Contact Us

Our Advisory services team has 14 years of experience focused on Application Security. We take a flexible approach to your strategic security problems.

Whether you are a global enterprise looking for advice on security strategy and governance, a major financial seeking support on regulatory compliance and penetration testing activities, or a startup looking for high quality assessments to give customers assurance for your business, we're here for you.

Our credentialed professionals are experts in how to break applications and fix code, who take pride in helping you succeed in your Secure SDLC and Secure DevOps programs. Contact us today to learn how we can help solve your organization’s application security challenges.

Some of
(Choose One)
(All that apply)
Web Search
Online Ad
White Paper
Analyst Report
Trade Show
Worked With Us Elsewhere