Cybersecurity specialist focused on offensive security and vulnerability research. Combining deep technical expertise with real-world penetration testing experience to identify and eliminate security weaknesses before malicious actors can exploit them.
Proactive Penetration Tester with 2+ years of hands-on experience in bug bounty hunting, vulnerability assessments, and on-demand penetration testing. Ranked Top 1,260 globally on Bugcrowd for identifying high-impact vulnerabilities. Skilled in network penetration testing, custom exploit/automation tool development, and hardening defenses for startups.
Self-Taught Certifications (EJPT, EWAPT, OSCP Concepts): Applied theoretical knowledge to real-world challenges using platforms like TryHackMe, HackTheBox, and online resources.
Developed a comprehensive Django-based web vulnerability scanner capable of detecting critical vulnerabilities including XSS, SQL Injection, CSRF, and LFI. Features include automated crawling for form and URL discovery, user authentication systems, and a comprehensive reporting system designed for security professionals.
Exact Offset Finder: Automated buffer overflow detection tool specifically designed for SyncBreeze exploitation
BOF-Linux Crossfire Server Exploit: Developed comprehensive scripts to test and exploit buffer overflow vulnerabilities
BSL Automation Tool: Advanced automated blind SQL injection exploitation framework for web applications
Built secure Django applications with robust SMTP integrations for startup clients, significantly enhancing email security protocols and communication infrastructure.
Ranked top 1,260 globally on Bugcrowd platform for significant security findings and impactful vulnerability reports
Ranked second researcher with most vulnerabilities discovered in Twilio Inc. 24th quarter
Self-taught certifications in EJPT, EWAPT, and OSCP concepts through intensive hands-on practice on platforms like TryHackMe and HackTheBox