Resume
Cole Banman
Education
Northeastern UniversityExpected 2029
B.S. Computer Science & Business Administration
GPA: 3.7/4.0
Study Abroad: London, UK (Freshman Year, 2025–2026)
Skills
| Languages & Frameworks | TypeScript, JavaScript, Python, React, Next.js, Node.js, Express |
| AI & Agents | Agentic Workflows, LLM Tool Orchestration, Prompt Engineering |
| Browser & Security | Chrome DevTools Protocol, Reverse Engineering, JADX, Frida, Network Traffic Analysis, Bot Mitigation |
| Tools & Infrastructure | Git, Docker, PostgreSQL, Linux, WebSockets, Supabase, Vercel, AWS |
Experience
Software Developer (Contract)Feb 2026 – Present
Northeastern University LondonLondon, UK
- Built a full-stack career platform and admin analytics dashboard (Next.js, Supabase) for internship listings; presented progress and architecture decisions to university leadership weekly.
- Reverse-engineered LinkedIn, Handshake, and Ashby from the ground up, building custom API connectors with advanced TLS fingerprinting and proxy rotation where no public APIs existed.
- Automated issue resolution by piping user feedback into a remote Claude Code instance that triaged reports, generated fixes, and forwarded summaries for review.
Security Researcher2024 – 2025
IndependentRemote
- Discovered a critical authorization flaw in Vercel's AI SDK granting unrestricted access to AI models; responsibly disclosed and awarded a $X,XXX payout.
- Found an API vulnerability in JD Sports' mobile app exposing sensitive store data; the company redesigned the affected platform in response.
Founder & Lead Engineer2023 – 2025
Flow MonitorsRemote
- Built a real-time inventory monitoring platform serving 20,000+ users, bypassing enterprise anti-bot systems (Cloudflare, Akamai, Kasada) to deliver reliable data pipelines and instant stock alerts.
- Grew the product to $3.5K+ MRR with zero outside investment.
- Designed an AI-first onboarding pipeline: when users requested a new site, an agentic environment used JADX (Android APK decompiler) or CDP to generate request-only monitoring solutions end-to-end.
Projects
dynafetch — npm:
Open-source Node.js library that replicates a full headless Chrome page load—TLS fingerprinting, JavaScript execution, and network interception—at up to 13.7x the speed of real Chrome.
@grabbit-labs/dynafetch · 1,200+ downloadsOpen-source Node.js library that replicates a full headless Chrome page load—TLS fingerprinting, JavaScript execution, and network interception—at up to 13.7x the speed of real Chrome.
Brett Adcock Browser Agent Challenge — github.com/colebanman/brett-adcock-agent-challenge
Built a CDP-based computer-use agent that completed all 30 browser challenges in under 3 seconds, driving Chrome directly over DevTools Protocol for raw speed; response gained 11.6K impressions on X.
Built a CDP-based computer-use agent that completed all 30 browser challenges in under 3 seconds, driving Chrome directly over DevTools Protocol for raw speed; response gained 11.6K impressions on X.
Grabbit — npm:
AI-driven browser automation framework that converts real-time interactions into deterministic, replayable API workflows via CDP, with fuzzy request matching and OpenAPI 3.0 schema generation.
@cole-labs/grabbit · 2,700+ downloadsAI-driven browser automation framework that converts real-time interactions into deterministic, replayable API workflows via CDP, with fuzzy request matching and OpenAPI 3.0 schema generation.
Awards & Recognition
- Awarded $25k+ in credits for AI/Cloud services after developing a top solution to Brett Adcock's browser agent challenge (11.6K impressions, 921 engagements).
- Vercel Security Bug Bounty — critical authorization vulnerability in AI SDK ($X,XXX payout).