Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
buis.ca is the personal website of Jeremy Buis. Based on the site content, he is a security engineer based in Toronto with long-term experience in penetration testing, secure code review, and offensive security research, covering areas such as web applications, APIs, and cloud infrastructure. The site showcases his blog, résumé, vulnerability disclosures, Bug Bounty results, and open-source contributions.
In terms of protection category, this is not a firewall, EDR, WAF, or cloud security platform, but rather a portfolio site highlighting the capabilities of an individual security expert. His work leans toward offensive security assessment, including research into XSS, RCE, XXE, JavaScript security, Less.js RCE, ImageMagick exploitation, and related topics. The site mentions vulnerabilities he has disclosed in products related to Oracle, Elastic, JetBrains, and WordPress, and lists records such as CVE-2020-13864, CVE-2020-7015, CVE-2019-15848, and CVE-2018-2625. For compliance and credentials, the site explicitly mentions only OSCP certification and a computer science degree; no enterprise-level compliance qualifications are shown.
The site does not disclose any service packages, consulting rates, payment methods, SLA, or delivery process. It also does not explain whether services are remote or onsite, nor does it provide details on report templates, retesting mechanisms, or similar engagement workflows. Therefore, if you are considering him as a potential partner for penetration testing or code review, you would need to contact him through external links such as LinkedIn, HackerOne, or GitHub for further confirmation.
The main advantages are a transparent background, strong technical depth, and publicly verifiable results, making the site especially useful for assessing his expertise in vulnerability research and web security. The downside is that the site is more of a portfolio than a complete commercial service page. It lacks information about team capacity, response capabilities, contracts, integrations, managed alerts, and compliance-focused deliverables.
It is suitable for security teams conducting expert background checks, researchers reading vulnerability write-ups, or companies doing preliminary research before hiring an independent penetration testing consultant. The main content does not provide information about access from China, so real-world availability, payment options, and contract methods are all unknown. If you need local compliance, a security operations platform, or Chinese-language support, domestic security service providers may be better alternatives.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on buis.ca official site.
buis.ca is an Canada Security provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach buis.ca directly.