I identify, validate, and responsibly disclose real-world security vulnerabilities across web applications and supporting infrastructure — with findings acknowledged by NASA, Google, Microsoft, Amazon, and Ferrari.
Through coordinated disclosure programs and hands-on penetration testing, I help organizations strengthen their security posture before adversaries can exploit it.
I am a cybersecurity researcher and penetration tester with hands-on experience in real-world vulnerability discovery, exploitation validation, and responsible disclosure. I have contributed to the security posture of globally recognized organizations including NASA, Google, Microsoft, Amazon, and Ferrari — earning formal recognition for responsible and impactful disclosures.
My expertise spans Security, Penetration Testing, Vulnerability Assessment, Cloud Security, Security Automation, API security, Open Source Intelligence, and Security Research & Development — with findings submitted across HackerOne, Bugcrowd, Intigriti, YesWeHack, and Wordfence.
Beyond hunting, I actively build security tools — including an AI-powered vulnerability scanner and a full-stack recon automation framework — to push the boundaries of how modern security research is conducted.
I am currently pursuing a B.E. in Electronics and Communications Engineering at Saveetha School of Engineering, where I serve as Cybersecurity Lead at the Google Developers Group. I am actively seeking cybersecurity opportunities where I can contribute, collaborate, and continuously grow as a security professional.
Focus on Cybersecurity, Penetration Testing, Red Teaming & SOC Operations. Cybersecurity Lead at Google Developers Group. Active in CTFs, bug bounty research, and community security awareness programs.
Grade A. Active participant in science exhibitions, school events, and technology competitions with a focus on academic excellence and foundational STEM skills.
NASA Secured
Microsoft Secured
Google Secured
Amazon Secured
Ferrari Secured
Wordfence Secured
Shippit Secured
TrekMail Secured
Audinate Secured
Panasonic Secured
ZKTeco SecuredNASA SecuredMicrosoft SecuredGoogle SecuredAmazon SecuredFerrari SecuredWordfence SecuredShippit SecuredTrekMail SecuredAudinate SecuredPanasonic SecuredZKTeco SecuredEnd-to-end recon pipeline using Subfinder, httpx, Nuclei, and custom Bash scripts. Automates subdomain enumeration, live host detection, and vulnerability scanning — cutting manual recon time by 80%.
Security assessments on 20+ web applications. Identified critical vulnerabilities including broken authentication, IDOR, OAuth token leakage, and exposed API keys — each documented with PoC, impact, and remediation.
Attack Surface Management platform for continuous asset discovery, shadow IT detection, and external exposure monitoring. Maps organizational digital footprint and identifies rogue assets before adversaries do.
Security testing suite purpose-built for Large Language Model applications. Covers prompt injection, model extraction, training data poisoning detection, and AI red-teaming workflows.
Integrated static and dynamic application security testing platform. Combines source code analysis with runtime vulnerability detection for full-spectrum application security coverage.
AI-powered automated penetration testing framework that intelligently maps attack surfaces, chains vulnerabilities, and generates actionable reports with minimal human intervention.
Independent security research initiative focused on zero-day discovery, novel attack vectors, and responsible disclosure across enterprise software and cloud infrastructure.
Intelligent automation platform leveraging AI agents for security workflow orchestration — from triage and enrichment to automated response and reporting pipelines.
Hands-on mentorship in offensive security, bug bounty, and VAPT — straight from someone actively shipping disclosures to NASA, Google, Microsoft, and Amazon.
Interested in discussing security research, vulnerabilities, or opportunities? Let's connect and secure the digital world together.