user pic

Santhosh Kumar

follow
Title
Information Security Consultant
Company
EY
Chennai
Information Security Professional & Independent Researcher to Identify security vulnerabilities and weaknesses in the target applications, establish Incident Response and ease of exploitation associated with each newly Discovered Vulnerability, and provide apt recommendations that should be implemented in order to mitigate the impact of the vulnerabilities identified.
• Vulnerability Research and Disclosure
• Web Application Penetration Testing as per OWASP Standards
• Penetration Testing / Vulnerability Assessment of the Networks & Systems
• Producing New Methods for Internet of Things secure Software Development.
Web application penetration testing :

During web application penetration testing found some interesting vulnerability in Google,Microsoft ,IBM, Intel, AT&T, Cisco and so on. My main focus on Top 10 owasp attack and logical bugs. I had also experience with tools like IBM Rational AppScan,Owasp ZAP, Ironwasp Security Scanner, Netsparker , Burpsuite, Acunetix , HP WebInspect,wa3f, Metasploit etc. Automated Testing Combined with Knowledge and thinking like a Attacker Could be best practice on securing Web Applications

Network Penetration testing :

Worked in Network Penetration testing to evaluates the strength of system and identifies known
Weaknesses and attempting to bypass the known weaknesses in an attempt to skillfully exploit.

Mobile Application Pentesting
* Android
* iOS
* Windows
* Firefox Os
* ubuntu
* Blackberry

Internet Of things
Worked On the Various methods of identifying New Vulnerabilities in internet of things include routers,IP cams Smart Switches. Reported Multiple Serious Vulnerabilties in ASUS, DLINK , Netis, Linked Sys, Netgear etc.

Areas of Expertise
Mobile Security Security Consulting
Certifications
CEH
2

Followers

0

Following

0

Posts



Posts by SanthoshKumar

No posts by SanthoshKumar yet.

Following


Not currently following any packages.


Experience

EY

Information Security Consultant
Oct 2016 - current | Chennai, India

Incident Response and Management security information and event management Application Security Malware Analysis Vulnerability Management and Patch Recommendation Log Analysis