TCS HackQuest
Top 25 ยท Season 10
$ ethical_hacker --mode=offensive
๐ Currently Building: InfosecPentest AI โ150+ vulnerabilities uncovered. Countless systems secured. Recognized by Shopify, Dell, BigCommerce, and US Government programs.
0
Reports
HoF
Bugcrowd
Top 25
TCS HackQuest
0
Programs
๐ TCS HackQuest Top 25
IDOR
RCE
CSRF
Auth Bypass
PII Leak
Hall of Fame
Acknowledged by industry leaders for responsible vulnerability disclosure.
Shopify
Rank #27
BigCommerce
Rank #8
Dell
Technology
US Government
Federal Programs
Experience
Offensive security, vulnerability research, and secure SDLC collaboration.
Bug Bounty Hunter
HackerOne & Bugcrowd ยท Remote
- 150+ valid vulns across private/public programs; Bugcrowd Hall of Fame.
- IDOR, RCE, CSRF, broken auth on production systems.
- Acknowledged by Shopify, Dell, BigCommerce, US Government.
- Burp Suite, Nuclei for recon/validation.
Data Security Intern
Eggoz Nutrition ยท Remote
- Resolved auth/data handling issues with eng/QA teams.
- Found Auth Bypass & PII leaks; drove remediation.
- Applied OWASP guidance in reviews and testing.
Penetration Testing Intern
Virtually Testing Foundation ยท Remote
- OWASP Top 10 fundamentals; lab-based web app testing.
- Burp Suite scanning and workflow setup.
- Structured reports aligned to pen-test methodologies.
Education
Information Security and Computer Science foundations.
M.Tech Information Technology (Information Security)
2024 โ 2026IET-DAVV, Indore ยท CGPA: 7.00
B.Tech Computer Science Engineering
2020 โ 2024BM College of Technology, Indore ยท CGPA: 7.3
Skills & Tooling
Focused on offensive security, recon, and automation.
Languages & Scripting
Bash
Go
Offensive Toolkit
Burp Suite
Nmap
Kali Linux
Nuclei
ffuf
sqlmap
Metasploit
Wireshark
Gobuster
Recon & Discovery
Subfinder
Shodan
Passive DNS
Amass
httpx
WHOIS
crt.sh
Censys
Security Foundations
OWASP Top 10
Secure SDLC
CVE Analysis
Infrastructure & Automation
Docker
VPS Management
Linux Administration
Projects & Tools
Security tooling, CLI utilities, and ongoing research.
๐ Currently Building
InfosecPentest AI โ AI-Powered Pentesting
A next-gen AI-assisted penetration testing platform that combines automated AI agents with manual expert validation.
- AI agents handle ~70% of testing โ structured recon, vulnerability scanning, and exploit validation in significantly less time.
- Full OWASP Top 10 coverage: IDOR, RCE, SSRF, XSS, SQL Injection, Auth Bypass, and more.
- Every finding includes proof-of-concept exploits and remediation guidance โ from Informational to Critical.
AI Agents
OWASP Top 10
Penetration Testing
Exploit Validation
Automated Recon
Axion (Go / CLI)
Open Source- A lightweight Go-based CLI tool for managing and executing SSH commands across multiple VPS instances defined in a YAML config.
- Enables bulk remote operations with a single command for efficient server management.
hostname-extractor (Rust)
Open Source- A high-performance Rust CLI tool for extracting hostnames from compressed JSONL files.
- Streams .xz JSONL (40GB+) in-memory with no disk writes; low RAM (<1GB).
- Optimized for high throughput and error-tolerant parsing.
Gitxpose
Research in Progress- Scans public and private Git repositories to detect leaked API keys, tokens, and secrets.
- Helps quickly identify and remediate credential exposure to prevent account compromise and data leaks.
MassScanning CVE-2025-55182
Open Source- A lightweight orchestrator and worker scanner for running large-scale continuous CVE scans.
- Docker-based worker image with orchestration scripts for split input file processing across VPS instances.
Certifications
Oracle Cloud Infrastructure (OCI) tracks.