Vulnerabilities.in | Vulnerability Solutions

I am expert in

Web Application Pentesting

Comprehensive Vulnerability assessment and penetration testing for web applications so that additional insights about the security infrastructure can be achieved.

Network Pentesting

Identify gaps for potential security breaches and enhance the security of the network infrastructure through comprehensive penetration testing.

iOS Application Pentesting

Protect iOS applications from malicious threats using dynamic analysis, reverse engineering and reliable penetration testing.

Android Application Pentesting

Protect iOS applications from malicious threats using dynamic analysis, reverse engineering and reliable penetration testing.

Security Code Reviews

Minimize potential threats and enhance the security of the software through static code analysis to prevent potential security breaches.

Information Security

To help protect the confidentiality, integrity, and availability of systems and data in organization's growing environments through testing, training, analysis, audits, hardening.

ServiceNow
July 2017 - Present

Certification Engineer

Responsible for ServiceNow Store Apps Security

Experience with application vulnerability assessment on ServiceNow store products.

Experiencing performing source code reviews for Security issues.

In-depth experience with common application vulnerabilities, such as the OWASP Top 10, and business logic flaws.

Experience in performing Threat Modeling.

Conduct systems testing to ensure critical vulnerabilities are identified.

Implement security improvements by assessing current situation; evaluating trends; anticipating requirements.

Implement and maintain security controls.

Provide Levels 2 or Level 3 technical support and after hours on-call technical support.

Protect systems by defining access privileges, control structures, and resources.
ZenQ
Apr 2016 - June 2017

Senior Security Test Engineer

Ethically hacked various companies & delivered security projects.

Red Team Member at Synack and Detectify.

Security Researcher at Government-lab.com & Vulnerability-lab.com.

Experience in working across HealthCare, E-Commerce, Education, Retail, BFSI, Telecom, Airlines, and IT sector domains.

Performed security assessments for more than 100 clients across multiple domains.

Expertise in coordinating with onsite & offshore teams.

Excellent client handling skills at every level of security engagement like Requirement Gathering & Scope analysis, Security Testing & Reviews, Reporting & demonstration of the issues.

Expertise in providing Information security trainings at all levels of organization.

Expertise in report preparation using identified vulnerabilities, risk criticality, mitigations and Proof of Concepts.
ZenQ
Sep 2014 - March 2016

Security Test Engineer

Professional Security Researcher, Ethical Hacker, Pentester & Bug Bounty Hunter.

Expertise in carrying out Vulnerability Assessment and Penetration Testing.

Expertise in Thin and Thick client applications security testing.

Expertise in Grey box and Black box testing.

Expertise in Security Code Reviews.

Expertise in commercial and open source vulnerability/port scanning tools.

Expertise in Proxy/Network sniffing/Exploitation/Source code analysis tools.

Expertise in Risk Analysis using CVSS score system.

Expertise in Vulnerability validations and providing cost-effective solutions by following industry best practices (OWASP & SANS 25).

Proficient in working with Windows, Linux and Mac Environments.
The Democratic News
June 2010 - Aug 2014

System Administrator

Server & Network Administration, Hacking, Rooting & Scriptkiddie defacemets.