Drash Kumar
Independent Cybersecurity Researcher
About
Passionate about offensive cybersecurity and breaking systems to make them stronger. Skilled in Python, Java, Bash, C++, and various frameworks and databases. Experienced in cloud security, network security, and cybersecurity tools. Certified Ethical Hacker by Cisco and Android Bug Hunting by EC-Council.
Skills & Expertise (32)
Work Experience
Offensive Security Intern
ISHEFT
May-2024 - Dec-2024
Researched and identified vulnerabilities in ISHEFT’s in-house web projects, uncovering logic flaws, misconfigurations, and access-control weaknesses. Created exploit demonstrations and security validations that were incorporated into red team assessments, strengthening ISHEFT’s security review process. Contributed to more secure, resilient, and timely project delivery for ISHEFT’s clients by addressing critical issues early in development.
Independent Cybersecurity Researcher
N/A
Feb-2025 - May-2025
Integrated real-time geolocation tracking using a custom Android-Firebase pipeline. Designed privacy-aware monitoring features with focus on consent, security, and forensic traceability. Discovered and responsibly disclosed a business-logic vulnerability in Wired’s paywall, developed a PoC, and coordinated remediation with the vendor.
Education
Bachelor of Computer Application
2021 - 2024 · India
Senior Secondary School
2020 - 2021 · India
Certifications
Certified Ethical Hacker
Cisco · N/A
Certified Ethical Hacker certification by Cisco.
Android Bug Hunting
EC-Council · N/A
Android Bug Hunting certification by EC-Council.
