Jun 2025 – Feb 2026 · 8 mos · Singapore

• Leading groundbreaking research into browser-native threats
• Bridging offensive research and defensive innovation to redefine enterprise browsing security

Jan 2025 – May 2025 · 4 mos

• Led initiatives in capacity expansion and efficiency improvement for multi-cloud infrastructure.
• Served as a Cybersecurity Subject Matter Expert and provided leadership in engineering and R&D.
• Developed/Maintained highly scalable infrastructure and led research projects to drive innovation.

Jun 2022 – Dec 2024 · 2 yrs 6 mos

• Led the team in developing, improving, maintaining, and supporting INE's scalable Lab platform that runs labs for Cloud (AWS, GCP, Azure), Networking (Cisco, Juniper, Fortinet), CyberSecurity and Data Science.
• Led DevSecOps adoption
• Increased the team size 4x in 4 months
• Trainings and Presentations:
• 1 - Attacking and Defending AWS Cloud Environment (Blackhat USA 2022)
• 2 - Introduction to Azure Security (DEF CON 30, Workshops)
• 3 - AWSGoat and AzureGoat (Blackhat USA 2022 Arsenal and DEF CON 30 Demolabs)
• Contribution to the Cybersecurity community by releasing:
• 1. AWSGoat (https://github.com/ine-labs/AWSGoat)
• 2. Azuregoat (https://github.com/ine-labs/AzureGoat)
• 3. GCPGoat (https://github.com/ine-labs/GCPGoat)

Oct 2021 – Jun 2022 · 8 mos

Jun 2016 – Oct 2021 · 5 yrs 4 mos

• I worked on initiatives like Hacker Arsenal, AttackDefense, CTF.live and PA YouTube Channel.
• I led a small content creation team to build 2000+ challenges in 125+ infosec sub-topics in 2 years. My team was responsible for research, development, testing, solution manuals/videos, and technical support for AttackDefense.
• AttackDefense had customers from 125+ countries who could play unlimited labs 24x7x365.
• Apart from the engineering and content creation work, we delivered the following during this period:
• 6+ paid training
• 15+ tools/talks in top conferences (Blackhat, DEF CON, HiTB, RootCon, OWASP NZ)
• 30+ 4-week live boot camps (in-house)
• Trainings/Bootcamps detailed list:
• 1 - Advanced WiFi Exploitation (Blackhat USA 2019, 2021 & BSides Canberra 2021)
• 2 - Advanced Real-World Penetration Testing
• a. OWASP NZ Day 2019
• b. HiTB Amsterdam 2019
• c. HiTB Singapore 2019
• d. RootCon Philippines 2019
• e. BlackHat Aisa 2020
• 3 - Information Security Awareness (Private clients)
• 4 - WiFi Pentesting Online Bootcamp (5 Batches)
• 5 - Container Security Beginners Online Bootcamp (5 Batches)
• 6 - DevSecOps Online Bootcamp (2 Batches)
• CVEs: CVE-2020-24263, CVE-2020-24264

Nov 2015 – Jun 2016 · 7 mos

• Created content and published research/tools in conferences:
• 1 - WiDy: WiFi 0wnage under $5 (Arsenal, Blackhat Asia 2017 and Demolabs, DEFCON 25)
• 2 - IIDS: IoT Intrusion Detection System (IoT Village, DEFCON 25)
• 3 - Wimonitor: OpenWRT package for remote sniffing (Demolabs, DEFCON 25)
• 4 - Deceptacon: Deception in WiFi (Wireless Village, DEFCON 25)
• 5 - PA-Toolkit: Wireshark Plugins for Pentesters (Arsenal, Blackhat USA 2018 and Demolabs, DEFCON 26)
• 6 - BLEMystique: Affordable Custom BLE Target (Arsenal, Blackhat USA 2018 and Demolabs, DEFCON 26)
• 7 - AD VoIP Toolkit: VoIP Analysis Wireshark Plugins (Arsenal, Blackhat Asia 2019)
• 8 - WiCy: Monitoring 802.11ac Networks at scale (HiTB Amsterdam, Haxpo 2019)
• 9 - VoIPShark: Open Source VoIP Analysis Platform (DEFCON China and Demolabs 2019)
• 10 - Developing Access Point Rootkits (Workshop, Wireless Village, DEF CON 27)
• 11- Writing Wireshark Plugins for Security Analysis (Workshop, Packet Hacking Village, DEF CON 27 and DEF CON 28)
• 12 - Hunting Threats with Wireshark Plugins (Research talk, RootCon Philippines 2019)
• 13 - Introduction to WiFi Security (Workshop, Wireless Village, DEF CON 28)
• 14 - 1-day workshop for ISEA and IIT Guwahati, 2020
• 15 - 2-day workshop for 350+ Govt. of India officials, August 2020
• 16 - ReconPal: Leveraging NLP for Infosec (Research talk, RootCon Philippines 2020)
• Contributed to:
• 1. Wi-Bear: Intelligent Autonomous Wi-Fi Honeypot Detection (Research talk, BSides Canberra, 2019)
• Other initiatives:
• 1 - Pentester Academy TV: Content creation and review for youtube (https://youtube.com/pentesteracademytv)
• 2 - Hacker Arsenal: Online pentest gadget store that offered 3 WiFi security gadgets. We also got featured in Cyber Defense Magazine's Cyber Security Leader 2017 list (http://www.cyberdefensemagazine.com/cyber-security-leaders-2017/).
• I was instrumental in the development of ESP8266/ESP32 and TP-Link 3020/3040 devices.
• 3 - CTF.live: Open-to-all and hosted CTFs for companies/conferences worldwide

Jun 2014 – Oct 2015 · 1 yr 4 mos · Pune, Maharashtra, India

• As a member of the AP-Sensor team, worked on upgrades/patches for WIPS and new features for AP platforms. My work there required me to code in C and shell script.
• Contributed to the following AP features:
• IPSec/EoGRE tunnels
• IPv6 communication and QoS
• 802.11r Fast BSS Transition Roaming
• Client reporting feature and NTP time sync
• Also participated in exploring the WiFi-LTE interoperability process of cellular offloading

May 2013 – Jul 2013 · 2 mos · Gurgaon, India

• As a member of DER (Data Evidence Recovery) team, recovered various digital pieces of evidence (in the form of files, images, emails) in cases of two MNCs and one local business. My work there consists seizure of evidence, maintaining CoC (Chain of Custody), recover data (deleted), find meaningful information and submit it to lawyers.

Aug 2012 – May 2014 · 1 yr 9 mos · New Delhi Area, India

• As a teaching assistant, helped instructors in managing labs, assignments, tutorials and exams.