Shubham
Chaskar

Hacker

Developer

Mentor

Hello,

I'm Shubham, a Cyber Security Enthusiast from India. I have a rich experience in pen-testing, also I write small utilities that help me and others while hacking.

Contact Me

About Me

My story

I work  @ArisGlobal as an Application Security Engineer and an independent security researcher in @Synack @bugcrowd  @yogosha @hackerone @intigriti @detectify. In the past, I worked as a freelancer and helped companies to secure their assets. I enjoy hacking on Web Applications, Android Applications, IOS applications, and APIs. I'm also well versed with Secure Code Analysis, Vulnerability Assessment, Network Penetration Testing, and Thick client testing. I also have quite some experience in malware analysis and in Cyber-threat Intelligence. I'm all ears if you are talking about Cricket.

  • Age: 24
  • Residence: India
  • Freelance: Available
  • Address: Maharashtra
  • E-mail: [email protected]

Services

What I Do
Infrastructure PT

Penetration tests are designed to go above and beyond a vulnerability assessment by performing a simulation of the same scenario a hacker would use to penetrate a network.

Web Application
PT

Web application penetration testing is comprised of the following main steps including information gathering, research, exploitation and reporting.

Mobile Application
PT

It involves decompiling, real-time analysing and testing android application for security point of view.

Secure Code
Review

It is the process of auditing the source code of an application to verify that the proper security and logical controls are present, that they work as intended,

Thick client PT

Thick client penetration testing involves both local and server-side processing and often uses proprietary protocols for communication. Simple automated assessment scanning is not sufficient and testing thick client applications requires a lot of patience and a methodical approach. Moreover, the process often requires specialized tools and custom testing setup.

API Penetration Testing

An Application Programming Interface (API) is an interface or communication protocol between a client and a server intended to simplify the building of client-side software. Here testing would cover testing of API's functions/methods. As a Freelancer, I do undertake freelance projects in API security.

Experience

4+ years
Present
ArisGlobal

A core member of security testing team. Working on web and mobile application security. Responsible for security testing on various products of the company.

2019-2020
SecureLogic

A member of security testing team. Worked on web and mobile application security. Responsible for security testing on various products of the clients.

2019-2019
Cloudsek

A member of a cyber threat intelligence team. Worked on monitoring dark web, surface web for finding potential threats to the client. 

2019-2019
OnMobile

A member of product support team for two months. Worked closely with developers to give feedback and bugs raised by the customers. 

Education

Studied at
2014-2018
D.Y.Patil SOE
Pune

Just a Graduation Degree and some memories.

2018-2019
CDAC
Bengaluru

Completed PG-Diploma in IT-Infrastructure, System and Security.

Hacking Skills

Creative ability
  • Vulnerability Assessment

    Process of identifying, quantifying, and prioritising the vulnerabilities in a system.

    90%
  • Penetration Testing

    is an authorised simulated cyber-attack on a computer system, performed to evaluate the security of the system.

    90%
  • Secure Code Review

    A secure code review is a specialised task involving manual and/or automated review of an application's source code in an attempt to identify security-related weaknesses (flaws) in the code

    70%
  • OSINT

    Open-source intelligence is a multi-methods methodology for collecting, analysing and making decisions about data accessible in publicly available sources to be used in an intelligence context.

    80%
  • Malware Analysis

    Malware analysis is the process of understanding the behavior and purpose of a suspicious file or URL. The output of the analysis aids in the detection and mitigation of the potential threat.

    30%
  • Cyber Threat intelligence

    Cyber threat intelligence is information about threats and threat actors that helps mitigate harmful events in cyberspace. Cyber threat intelligence sources include open source intelligence, social media intelligence, human Intelligence, technical intelligence or intelligence from the deep and dark web.

    70%

Coding Skills

Developing on
  • Python
    90%
  • Go
    70%
  • PHP, MYSQL
    50%
  • JavaScript
    30%
  • HTML, CSS
    75%
  • .NET
    30%
  • Java
    Enter description
    40%

Testimonials

What they say
Zenly
Zenly
Android

"Report was relevant, useful and well written. Thanks !"

Drexel
Drexel
Web

You successfully aided us in our mission to protect the people, the information, and the systems of the University.

Alef
Alef
WEB

ALEF NULA is thankful for your input and we appreciate the professional manner in which the issue was reported.

Certifications

For HR
CEH
OBB

Portfolio

Latest rewards
Indeed
Image
Indeed
GitHub
Image
GitHub
Drexel University
Image
Drexel University
HP
Image
HP
Vimeo
Image
Vimeo
lenovo
Image
lenovo
WU
Image
WU
GovTech
Image
GovTech
Etsy
Image
Etsy
Tripadvisor
Image
Tripadvisor

Contact

Let's talk

    Full name *

    Email address *

    Message *

    Shubham Chaskar
    Hacker & Mentor
    • Age: 24
    • Residence: India
    • Freelance: Available
    • Address: Maharashtra
    • E-mail: [email protected]
    Shubham Chaskar