About
Application Security Engineer with 2.1+ years of hands-on experience in Web and API Vulnerability Assessment and Penetration Testing (VAPT). Specialized in identifying OWASP Web Top 10 and OWASP API Top 10 vulnerabilities through manual and tool-assisted testing. Experienced in end-to-end security assessments including scoping, testing, reporting and remediation validation.
Skills & Expertise (23)
Work Experience
Application Security Engineer
Axiomtech It Solutions Pvt Ltd
Mar 2024 - Present
Conduct security testing on various applications. Analyzing web applications manually to find vulnerabilities like SQLi, XSS, CSRF, and Business Logic errors with the help of Burp Suite. Designing different types of attacks like Broken Authentication Based Attacks, Broken Access Control Based Attacks, Sensitive Data Exposure Attacks, Injection Attack, XXS Attacks, Session hijacking, CSRF attacks, Static and automatic vulnerability scanning, penetration testing. Analyze the mobile application to find out the Root detection, Jailbreak, SSL pinning Bypass, Reverse engineering and Business Logic errors with the help of APK Tool and Burp suite. Identification of vulnerabilities and reporting them to the client/developer, tracking and retesting. Follow-ups for closure on identified vulnerabilities and re-validation of fixed vulnerabilities. Preparing reports with the vulnerabilities identified in automated and manual security assessments with detailed risk analysis.
Education
Bachelor of Engineering - Savitribai Phule Pune University
- · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (23)
Click a skill to find developers with the same skill
