Harish

Penetration Tester

Bengaluru, India

Profile Score

About

Penetration Tester with 1+ year of hands-on experience in web and network security assessments. Experienced in identifying, exploiting, and reporting real-world vulnerabilities aligned with OWASP Top 10 and MITRE ATT&CK.

Skills & Expertise (48)

Penetration Testing Intermediate

7.3/10

Years Exp

Metasploit Intermediate

7.1/10

Years Exp

Burp Suite Intermediate

7.1/10

Years Exp

Nmap Intermediate

7.1/10

Years Exp

Black-Box Testing Intermediate

6.8/10

Years Exp

Grey-box Testing Intermediate

6.8/10

Years Exp

OWASP WSTG Intermediate

6.8/10

Years Exp

Snort Nikto Gobuster WIRESHARK Hydra Hashcat John the Ripper MITRE ATT&CK NIST ISO 27001 OpenVAS OSINT Python Bash Custom Recon & Automation Scripts Kali Linux Parrot OS Ubuntu Tor Proxychains VPN Authentication & Session Testing VAPT SQL Injection XSS CSRF SSRF XXE LFI/RFI IDOR Business Logic Flaws SQLmap OWASP Top 10 Network Enumeration Exploitation Privilege Escalation Post-Exploitation Credential Attacks PTES Nessus Attack Lifecycle

Work Experience

Penetration Tester Intern

cartel software PVT.LTD.

August - Present

Performed penetration testing and security validation on internal systems using Metasploit, Burp Suite, and Nmap to identify exploitable vulnerabilities, misconfigurations, and attack vectors. Conducted vulnerability assessments and risk analysis using Nessus and OpenVAS, prioritizing findings based on CVSS scores, risk severity, and potential business impact. Executed network and application security testing, including reconnaissance, scanning, and exploitation validation, to assess security control effectiveness. Produced detailed penetration testing and remediation reports, delivering actionable recommendations aligned with security best practices and industry standards.

SOC Analyst

ACE MANPOWER

Aug 2025 - Present

Monitored, analyzed, and triaged security alerts using SIEM tools (Splunk / Microsoft Sentinel / QRadar), performing log analysis across firewalls, EDR, Windows Event Logs, and Linux systems to detect security incidents. Investigated and responded to phishing, malware, brute-force, and unauthorized access incidents following incident response lifecycle, including containment, escalation, and remediation support. Performed IOC analysis (IP addresses, URLs, file hashes) using threat intelligence platforms and mapped attacker behavior using the MITRE ATT&CK framework to improve threat detection accuracy. Documented investigations in ticketing systems (ServiceNow / Jira), reduced false positives through alert review and tuning, and collaborated with Tier 2 SOC and IT teams to maintain SLA compliance.

Education

Bachelor of Technology (B.Tech) in Artificial Intelligence & Machine Learning - SRM Institute of Science and Technology

2020 - 2024 · Afghanistan

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10

📄 Resume 10/10

💼 Job Title 10/10

✍️ Bio 10/10

🛠️ Skills 20/20

🎓 Education 10/10

⏱️ Experience 5/15

💰 Rate 0/5

🏆 Certs 0/5

✅ Verified 5/5

Total Score 80/100

Profile Overview

Member sinceMar 2026

Availability Details

Visa Status

Need Sponsorship

Relocation

Open to Relocation

Skills (48)

Penetration Testing Metasploit Burp Suite Nmap Black-Box Testing Grey-box Testing OWASP WSTG Snort Nikto Gobuster +38 more

Similar Profiles

Sachin Kumar

Security Researcher

$100/hr

Pandiyarajan Rajendran

Aspiring Penetration Tester

$5/hr

Siddh Patel

Vulnerability Assessment and Penetration Testing (VAPT) professional

$20/hr

Karthiga G

Freelance Web Application Penetration Tester

$50/hr

View All Developers →