I work as the Information Security Lead at Astra Security, a NASSCOM Emerge 50 and CyberTech 100 company, where I have helped secure companies and organizations like Emirates, Gillette, African Union, ICICI, Dream11, Muthoot Finance, Kotak Securities, NIIT, GoDaddy, Indian Oil Corporation, SpiceJet, NDTV, HOOQ and more.

At Astra, I lead the red team activities and perform vulnerability assessment and penetration testing on web and mobile applications, network and cloud infrastructure, in addition to code reviews and assessment of other assets.

I also use my personal website to share articles, guides and stories from my journey in Cybersecurity to help secure, educate and advice individuals and organizations. Further, I contribute to open source projects such as OWASP WSTG, OWASP Top 10 and OWASP Smart Contract Top 10.

You can also reach me at [email protected]

Specializing in the security assessment of

• Web applications
• Mobile applications
• Desktop applications
• APIs
• Network infrastructure
• Cloud infrastructure
• Smart Contracts
• Source code
• And others assets

• Bachelor of Science (Honours) in Computer Security, First Class Honours, Northumbria University
• Advanced Diploma in Information Technology, Management Development Institute of Singapore

• Certified Blockchain Security Professional™
• Certified Ethical Hacker (CEH v10)

• CVE-2020-7108
• CVE-2020-8549
• CVE-2020-8615
• CVE-2020-9466
• CVE-2020-10385
• CVE-2020-15038
• CVE-2020-15478
• CVE-2020-16157
• CVE-2020-25015
• CVE-2020-35489
• CVE-2021-27839
• CVE-2021-24233
• CVE-2021-24234
• CVE-2024-42054
• CVE-2024-42055