Curriculum Vitae

CV

Download PDF version

Education & Certifications

2023

eLearnSecurity Web Application Penetration Tester (eWPT)

eLearnSecurity

Industry-recognized web application penetration testing certification focusing on practical exploitation techniques.

2022

TryHackMe Complete Beginner Path

HackTheBok

Comprehensive hands-on cybersecurity training covering Linux, networking, web exploitation, and privilege escalation.

2021 - Present

PortSwigger Web Security Academy

PortSwigger

Advanced web security training platform covering OWASP Top 10 and modern web vulnerabilities with hands-on labs.

Professional Certifications

2023

Bug Bounty Hunter Certification

YesWeHack

2023

Bug Bounty Hunter Certification

HackerOne

Experience

2022 - Present

Independent Security Researcher

Bug Bounty Programs & Open Source Projects

Focused on improving security of open source projects and participating in bug bounty programs. Discovered 50+ security vulnerabilities in web applications and maintained a consistent presence on bug bounty platforms. Published technical writeups and security research findings.

2020 - 2022

Security Research & Self-Development

CTF Competitions & Learning Platforms

Building technical skills through hands-on practice and continuous learning. Participated in 20+ CTF competitions (HackTheBox, TryHackMe, etc.), completed advanced web security courses, and built custom tools and scripts for security automation.

2018 - 2020

Technical Foundations

Self-Study & Personal Projects

Developed core technical skills in web development and networking. Learned full-stack web development (HTML/PHP/JS, Python, SQL), built multiple web applications to understand development process, studied networking fundamentals and system administration, and started learning security basics through online resources.

Technical Skills

Security Testing

OWASP Top 10 Web Application Security API Security Mobile Security Authentication Testing Authorization Flaws

Vulnerabilities

SQL Injection XSS SSRF RCE IDOR CSRF XXE Deserialization Business Logic Flaws

Tools & Frameworks

Burp Suite OWASP ZAP SQLmap Nmap Metasploit Nuclei ffuf Subfinder Gobuster

Programming

Python JavaScript Go PHP SQL

Platforms & Technologies

Linux Docker Git REST API GraphQL

Bug Bounty Platforms

HackerOne YesWeHack Bugcrowd

---

Areas of Expertise

Vulnerability Research
Deep understanding of web application vulnerabilities, API security flaws, and authentication/authorization issues.

Penetration Testing
Comprehensive security assessments for web applications, mobile apps, and network infrastructure.

Security Tool Development
Building automation tools for vulnerability discovery and security testing workflows.

Security Writing
Creating detailed vulnerability reports, writeups, and educational content for the security community.