> Independent cybersecurity researcher specializing in web application security, vulnerability discovery, and responsible disclosure. Making the digital world safer, one vulnerability at a time.
> Passionate about securing digital infrastructure and finding vulnerabilities before bad actors do.
> I'm an independent web security researcher and penetration tester from Khandwa, Madhya Pradesh, India. My journey in cybersecurity started with a curiosity about how systems work and how they can be broken into.
> Over the years, I've tested over 700 websites and have been recognized by industry leaders including Apple, Microsoft, Verizon, and the United Nations. My most notable achievement is the discovery of CVE-2022-24620, a stored XSS vulnerability in Piwigo.
> I believe in responsible disclosure and work closely with organizations to patch vulnerabilities before they can be exploited maliciously.
> Recognized by world's leading organizations for responsible vulnerability disclosure.
> Discovered and reported information disclosure vulnerability in Apple's enterprise systems.
> Remote code execution in web app services. Listed in 2022 & 2024 first list.
> Multiple vulnerabilities including Open Redirect, HTML/CSS injection, and XSS.
> Took over 26 subdomains & reported critical vulnerability to prevent further issues.
> Vulnerability reported to UN systems with pending public acknowledgment.
> Successfully identified 7 reflected XSS vulnerabilities in web assets.
> Industry-recognized certifications and acknowledgments from leading organizations.
> Google Certificate
> Professional Certificate in Cyber Security Foundations
> CompTIA
> Fundamentals of Computer Security Support
> Follow my work, reach out for collaborations, or just say hello.