Security Researcher | Application Security | Linux
Mumbai, India
Skills
Certifications & Training
Technical Proficiency
Download Resume
I am Hrishikesh, an engineer passionate about automating tasks. Through automation, I have discovered a powerful means to enhance productivity and optimize my workflow. By scripting solutions for tedious and repetitive jobs, I have the opportunity to focus on more impactful work while machines handle the mundane. This approach allows me to delve deeper into complex processes, continually learn new skills, and uncover areas for improvement. Automation has become an integral part of my proactive approach, enabling me to maximize efficiency and make the most of my time.
DAST Assessment.
SAST Assessment (Analyze source code of findings reported by SAST tools and eliminate false positives.)
API Pen Testing.
Vulnerability Assessment & Penetration Testing for Internal and External Network.
Automating Daily Tasks & Scripting to make test cases automated.
Achievements:Developed a tool leveraging AWS Route 53 data, conducting comparative analysis, and performing proactive scans to provide valuable insights for efficient management of AWS environments.
Successfully designed and deployed a production-ready file-share portal, enabling secure file sharing and centralized logging while meeting stringent security and audit requirements.
Created the "Github Crawler," a powerful tool that bypasses GitHub API rate limits, enabling quick and efficient search for code snippets, repositories, and other information on GitHub.
Designed and developed an open-source Jira dashboard that integrates ticket data, offering comprehensive analytics and duration metrics to optimize workflows and improve productivity.
Developed the homegrown product "Spyonic," integrating multiple open-source bug bounty tools to proactively identify and remediate security misconfigurations, reducing the risk of successful attacks.
Designed and developed a Slack app for S3 security self-assessment, automating domain input and checks for default paths and custom wordlists, ensuring proper security measures for S3 buckets.
Implemented an automated process that retrieves and matches the latest CVEs using OpenCVE API and Qualys scripts, enabling organizations to proactively identify and address vulnerabilities before exploitation occurs.
Tested government websites for vulnerabilities and reported to the respective authorities with appropriate optimal solution for the same.
Developed an OSINT Tool called OsintORK for ease in digital investigation for authorities and help fraud online traces of reformation regarding the subject of the case.
DarkWeb Deep monitoring.
Collected requirements as per department needs and developed Social Media Monitoring Web Application for collecting complaints regarding offensive posts.
Included modules to generated automated letters/ reports/notices based on actions taken by the respective authority and dynamically change content as per the sections of India Penal Court criminal procedure code and IT Act.
Automating and Optimizing Infrastructural work.
• Web Application Penetration Testing.
• API Penetration Testing.
• Android Penetration Testing.
• Vulnerability Assessment & Penetration Testing for Internal and External Network.
• Monitored use of data files and regulated access to protect secure information.
• Monitored computer virus reports to determine when to update virus protection systems (Quarterly VA-PT)
• Conducted penetration testing and located vulnerabilities in systems before they could be exploited.
• Monitored organization’s networks for security breaches and investigated violations.
• Expertise in security policies.
• Expert in Automation Scripts.
Achievements:• Automated whole IP Blocking and Releasing process.
• Implementation of Rules on basis of Crawling behavior.
• Job Role & Responsibilities:
• SIEM module.
• Worked on MVC Projects.
• LAMP Architecture.
• Understanding of signal and systems in railway units.
• Optical fiber communication in railways.
• Tracking of signals.
• Digital signal processing in railways.
Bachelor's Degree in Electronics and Telecommunication Engineering
Higher Secondary School Certificate.
Secondary School Certificate.