Hi! I'm a Malware Analyst and Penetration Tester with a passion driven through CyberSecurity. With three years of hands on experience in various security testing and tools, expertise in real world vulnerabilities and skilled in attack and threat vector aspects. Knowledge in various domains such as Network, Web-application and Malware analysis. I am also an fast learner and active listener with high exponential skills and precise workaholic.
Have more than 3+ years of experience in penetration testing including Web Application penetration testing; System Application penetration testing;
Mobile application penetration testing; Network application penetration testing; social engineering penetration testing etc. Follow systematic approach and best industry methodology like OWASP Testing Guide v4(OTGv4) ; SANS top 25; NIST SP 800-115; PCI DSS etc to perform penetration testing :
Web Application Testing : Perform both manual and automated penetration testing for vulnerabilities like SQL injection, Cross-site scripting(XSS),
Cross-site request Forgery(CSRF), Code injections, Authentication Bypass, Access Violation, Remote File inclusion(RFI),Local File Inclusion(LFI) etc.
Network Testing: Provide Network Penetration Testing so that your Network Infrastructure is secured from the real attacks. Perform both manual and automated network penetration testing to identify network security threats in your network.
Technical Skills: Vulnerability Assessment and Penetration Testing, Malware Analysis, Reverse Engineering, Automation using Python, Exploit Development, Threat Hunter.
Programming Skills: Python, Flask, Yara, Bash, Linux Administration, C, C++.
1) Identify and use tools and techniques to conduct static and dynamic analysis of malware, including building a lab environment.
2) Create and maintain network and/or host-based signatures to detect malware using Yara, ClamAV.
3) Understand X86 assembly language and the use of debuggers, like Olly DB or IDA Pro
4) Leverage scripting skills to develop tools for the automation of security processes using Python , Bash.