Information Security Professional & Independent Researcher to Identify security vulnerabilities and weaknesses in the target applications, establish Incident Response and ease of exploitation associated with each newly Discovered Vulnerability, and provide apt recommendations that should be implemented in order to mitigate the impact of the vulnerabilities identified. • Vulnerability Research and Disclosure • Web Application Penetration Testing as per OWASP Standards • Penetration Testing / Vulnerability Assessment of the Networks & Systems • Producing New Methods for Internet of Things secure Software Development. Web application penetration testing :
During web application penetration testing found some interesting vulnerability in Google,Microsoft ,IBM, Intel, AT&T, Cisco and so on. My main focus on Top 10 owasp attack and logical bugs. I had also experience with tools like IBM Rational AppScan,Owasp ZAP, Ironwasp Security Scanner, Netsparker , Burpsuite, Acunetix , HP WebInspect,wa3f, Metasploit etc. Automated Testing Combined with Knowledge and thinking like a Attacker Could be best practice on securing Web Applications
Network Penetration testing :
Worked in Network Penetration testing to evaluates the strength of system and identifies known Weaknesses and attempting to bypass the known weaknesses in an attempt to skillfully exploit.
Mobile Application Pentesting * Android * iOS * Windows * Firefox Os * ubuntu * Blackberry
Internet Of things Worked On the Various methods of identifying New Vulnerabilities in internet of things include routers,IP cams Smart Switches. Reported Multiple Serious Vulnerabilties in ASUS, DLINK , Netis, Linked Sys, Netgear etc.