About Me
A Brief Introduction
A fervently dedicated information security professional with a youthful spirit, backed by a robust 3-year journey in the field. I proudly hold industry valued certifications like OSEP (OffSec Experienced Pentester), OSCP (OffSec Certified Professional), and CRTE (Certified Red Team Expert), showcasing my commitment to excellence.
My hunger for knowledge is insatiable, as seen in my adeptness at weaponizing information through conquering CTFs, machines, and pro labs on platforms like HackTheBox. Beyond personal achievements, I've earned a silver medal nationally, representing my state in the fiercely competitive IndianSkills Cybersecurity Competition.
My expertise extends across Red Teaming, Adversary Emulation, Active Directory Pentesting, Assume Breach strategies, Web Application Penetration Testing, Network Pentesting, and the art of automating security operations.
Beyond my professional pursuits, I have a deep passion for machines, including cars and motorcycles, and find solace in the gym. An avid cricket enthusiast, my love for the sport translated into three appearances in district-level cricket from 2014 to 2016, reflecting my dedication and skill on the field.
Skills
Red Teaming
Adversary Emulation
Network Security
Web Application Security
Security Automation
Active Directory Penetration Testing
C4 and C2 Frameworks
Experience
FireCompass
Senior Security Researcher
October 2021 - Present
- Leads and conducts successful Red Team operations for FireCompass clients across various countries and industries.
- Executed Adversary Emulation on various clients.
- Conducts comprehensive reconnaissance and OSINT for clients to enhance attack surface understanding and management.
- Successfully conducted CyberDrills for multiple clients to assess and enhance their proactiveness against cyber attacks.
- Conducted Ransomware Simulation on multiple clients.
- Leading the research team for automation of the red team activities and product improvements.
Synack Red Team
Red Team Member
February 2021 - Present
As a member of the Synack Red Team, I receive invitations to participate in bug bounty programs hosted on Synack's platform, engaging in penetration testing for both network and web applications.
Yogosha
Community Member
November 2021 - Present
As a member of the Yogosha, I receive invitations to participate in bug bounty programs hosted on Yogosha's platform, engaging in penetration testing for Web Applications
Certifications & Achievements
WorldSkills Medallion for Excellence
WorldSkills 2024 Lyon
15 Sep 2024
I represented my country in the WorldSkills 2024 Cyber Security competition, which took place in Lyon, France, from September 10 to 15. After four days of intense competition among 21 nations, I proudly secured 4th place and earned the Medallion for Excellence.
IndiaSkills Gold medalist
IndiaSkills 2024 Cybersecurity
20 May 2024
I represented my state in the Indiaskills National Competition in the skill Cybersecurity, advancing through prescreening, state, and regional rounds. After a three-day competition between 18 states, I proudly won the Gold Medal.
Oracle Critical patch Jan 2021
Oracle
Jan 2021
Discovered and reported a high severity bug in one of the oracle web application product. Rewarded with a Hall Of Fame.
Hackthebox Bug Killer Badge
Hackthebox
29 AUG 2020
Discovered an interesting bug on HackTheBox platform, Rewarded with a Bug Killer badge on HackTheBox profile.
State Level Cricket player X 3
Cricket Association Of Uttrakhand
2013,2014,2015
Testamonial
Geetanjali Singh
Security Solution Architect
Bell Canada | CISSP, OSCP, CTIA
I am very fortunate to see talented people like Prashant, in cyber domain. Worked with Prashant on some of the boxes from Hack the box, and was very impressed with the approach he has towards complex problems. His HTB write ups are pretty impressive and helpful. I will strongly recommend him for any security endeavour.
Jai Kumar Sharma
Offensive Security - Product Security
GoDaddy | eWPTXv2, eMAPT, CRTP, CCSK, eCPPTv2, CEH
Prashant is an extremely hard-working and dedicated infosec person, his knowledge of hacking into Linux and Windows infrastructure is commendable. His problem solving skills are also very unique and easy to adapt, his blogs on cracking HTB boxes are very comprehensive, I would definitely recommend Prashant as an asset to any firm for its infosec needs.
Karan Makwana
Associate Consultant
Tata Consultancy Services
I have had the pleasure of collaborating with Prashant, a highly talented and hardworking individual who is dedicated to his work. Prashant consistently delivers exceptional results, combining his natural talent and strong work ethic to approach challenges with creativity and precision. His technical expertise and critical thinking make him an invaluable asset to any team or project. Moreover, Prashant is a collaborative team player, always open to sharing ideas and knowledge. His positive nature, professionalism, and integrity make him a trusted colleague.
Pratik Singh
I highly recommend Prashant as an exceptional talent in the field of offensive security testing. During our time working together, Prashant consistently demonstrated a deep understanding and extensive knowledge of various techniques and methodologies. Prashant's dedication to teaching and sharing insights is truly commendable. He willingly shared his expertise and guided me through numerous challenges, providing valuable tricks and strategies along the way. His humble and wise approach to problem-solving is a testament to his exceptional character. Prashant's ability to think critically and analyze complex scenarios sets him apart. He is not only a proficient practitioner but also a natural leader, always willing to take the initiative and guide the team towards success. I have no doubt that Prashant will continue to excel in his career and make significant contributions to the field of offensive security. He is an asset to any team or organization fortunate enough to have him on board.