About Me
A Brief Introducction
A fervently dedicated information security professional with a youthful spirit, backed by a robust 2-year journey in the field. I proudly hold industry valued certifications like OSEP (OffSec Experienced Pentester), OSCP (OffSec Certified Professional), and CRTE (Certified Red Team Expert), showcasing my commitment to excellence.
My hunger for knowledge is insatiable, as seen in my adeptness at weaponizing information through conquering CTFs, machines, and pro labs on platforms like HackTheBox. Beyond personal achievements, I've earned a silver medal nationally, representing my state in the fiercely competitive IndianSkills Cybersecurity Competition.
My expertise extends across Red Teaming, Adversary Emulation, Active Directory Pentesting, Assume Breach strategies, Web Application Penetration Testing, Network Pentesting, and the art of automating security operations.
Beyond my professional pursuits, I have a deep passion for machines, including cars and motorcycles, and find solace in the gym. An avid cricket enthusiast, my love for the sport translated into three appearances in district-level cricket from 2014 to 2016, reflecting my dedication and skill on the field.
Skills
Red Teaming
Adversary Emulation
Network Security
Web Application Security
Security Automation
Active Directory Penetration Testing
C4 and C2 Frameworks
Experience
FireCompass
Senior Security Researcher
October 2021 - Present
- Leads and conducts successful Red Team operations for FireCompass clients across various countries and industries.
- Executed Adversary Emulation on various clients.
- Conducts comprehensive reconnaissance and OSINT for clients to enhance attack surface understanding and management.
- Successfully conducted CyberDrills for multiple clients to assess and enhance their proactiveness against cyber attacks.
- Conducted Ransomeware Simulation on multiple clients.
- Leading the research team for automation of the red team activities and product improvements.
Synack Red Team
Red Team Member
February 2021 - Present
As a member of the Synack Red Team, I receive invitations to participate in bug bounty programs hosted on Synack's platform, engaging in penetration testing for both network and web applications.
Yogosha
Community Member
November 2021 - Present
As a member of the Yogosha, I receive invitations to participate in bug bounty programs hosted on Yogosha's platform, engaging in penetration testing for Web Applicationss
Testamonial
Geetanjali Singh
Security Solution Architect
Bell Canada | CISSP, OSCP, CTIA
I am very fortunate to see talented people like Prashant, in cyber domain. Worked with Prashant on some of the boxes from Hack the box, and was very impressed with the approach he has towards complex problems. His HTB write ups are pretty impressive and helpful. I will strongly recommend him for any security endeavour.
Jai Kumar Sharma
Offensive Security - Product Security
GoDaddy | eWPTXv2, eMAPT, CRTP, CCSK, eCPPTv2, CEH
Prashant is an extremely hard-working and dedicated infosec person, his knowledge of hacking into Linux and Windows infrastructure is commendable. His problem solving skills are also very unique and easy to adapt, his blogs on cracking HTB boxes are very comprehensive, I would definitely recommend Prashant as an asset to any firm for its infosec needs.
Karan Makwana
Associate Consultant
Tata Consultancy Services
I have had the pleasure of collaborating with Prashant, a highly talented and hardworking individual who is dedicated to his work. Prashant consistently delivers exceptional results, combining his natural talent and strong work ethic to approach challenges with creativity and precision. His technical expertise and critical thinking make him an invaluable asset to any team or project. Moreover, Prashant is a collaborative team player, always open to sharing ideas and knowledge. His positive nature, professionalism, and integrity make him a trusted colleague.
Pratik Singh
I highly recommend Prashant as an exceptional talent in the field of offensive security testing. During our time working together, Prashant consistently demonstrated a deep understanding and extensive knowledge of various techniques and methodologies. Prashant's dedication to teaching and sharing insights is truly commendable. He willingly shared his expertise and guided me through numerous challenges, providing valuable tricks and strategies along the way. His humble and wise approach to problem-solving is a testament to his exceptional character. Prashant's ability to think critically and analyze complex scenarios sets him apart. He is not only a proficient practitioner but also a natural leader, always willing to take the initiative and guide the team towards success. I have no doubt that Prashant will continue to excel in his career and make significant contributions to the field of offensive security. He is an asset to any team or organization fortunate enough to have him on board.
Certifications & Achievements
Hackthebox Rastalabs
Hackthebox Penetration testing labs
Credential ID: HTBCERT-4D9FFCBC42
Hackthebox Offshore
Hackthebox Penetration testing labs
Certification ID : HTBCERT-4EB10CBF41
Hackthebox Cybernetics
Hackthebox Penetration testing labs
Certification ID : HTBCERT-9C050AF889
Oracle Critical patch Jan 2021
Oracle
Jan 2021
Discovered and reported a high severity bug in one of the oracle web application product. Rewarded with a Hall Of Fame.
Hackthebox Bug Killer Badge
Hackthebox
29 AUG 2020
Discovered an interesting bug on HackTheBox platform, Rewarded with a Bug Killer badge on HackTheBox profile.
Silver Medalist in Nationals and Regional Cybersecurity Competition
IndiaSkills 2021 Cybersecurity
10 Jan 2022
Represented North India in a cybersecurity competitive event organized by IndiaSkills and achieved a silver medal.
State Level Cricket player X 3
Department of Sports Uttrakhand
2013,2014,2015