Jai Prakash Saini

Security Engineer – Web & Application Security

Cybersecurity professional specializing in penetration testing, vulnerability assessment, and OWASP security practices.

jai prakash, jai security engineer, web application security, penetration testing, VAPT, OWASP Top 10, SQL Injection, XSS, CSRF, IDOR, jaiprakash.online

Professional Summary

Cyber Security professional with hands-on experience in Web Application Penetration Testing, VAPT, and DAST. Skilled in identifying OWASP Top 10 vulnerabilities including SQL Injection, XSS, authentication and authorization flaws. Experienced with industry-leading tools such as Burp Suite, Nmap, and Linux-based security testing environments.

Currently pursuing B.Tech in Artificial Intelligence while actively seeking an entry-level role as a Penetration Tester or Security Analyst to contribute to organizational security posture.

Jaipur, Rajasthan, India

Technical Expertise

Security Specializations

  • Web Application Penetration Testing (OWASP Top 10)
  • Vulnerability Assessment & Penetration Testing (VAPT)
  • Dynamic Application Security Testing (DAST)
  • Ethical Hacking

Vulnerability Types

  • SQL Injection
  • Cross-Site Scripting (XSS)
  • Cross-Site Request Forgery (CSRF)
  • Insecure Direct Object References (IDOR)
  • File Upload Vulnerabilities

Security Tools

  • Burp Suite
  • Nmap
  • Nikto
  • SQLmap
  • OWASP ZAP

Core Competencies

  • Networking (TCP/IP, DNS, HTTP/HTTPS)
  • Linux Administration
  • Port Scanning & Reconnaissance
  • Vulnerability Reporting & Remediation

Achievement Metrics

0+

Vulnerabilities Found

Critical & High Severity Issues Identified

0+

Security Tests

Web Applications Analyzed

0

Certifications

Industry-Recognized Credentials

0%

Success Rate

Test Completions & Deliverables

Capture The Flag & Bug Bounty

CTF Participations

  • HackTheBox: 20+ machines rooted
  • TryHackMe: 40+ challenges completed
  • OWASP Top 10 Labs: All scenarios mastered

Vulnerability Disclosure

  • Bug Bounty: Active on HackerOne, Bugcrowd
  • Responsible Disclosure: Multiple vendors contacted
  • CVE Research: Tracking latest vulnerabilities

OWASP Top 10 Mastery

  • Injection: SQL, Command, LDAP
  • Authentication: Session & Access Control Flaws
  • XSS & CSRF: Advanced payload techniques

Skill Proficiency

Burp Suite

Expert

90%

SQL Injection Testing

Expert

85%

Nmap & Scanning

Advanced

80%

Linux Security

Advanced

75%

XSS & CSRF Exploitation

Intermediate

78%

Vulnerability Reporting

Expert

88%

Testimonials & Recommendations

"Jai demonstrated exceptional skill in vulnerability assessment and penetration testing. His attention to detail and thorough documentation of findings were impressive. Highly recommended for any cybersecurity role."

Rajesh Kumar

Senior Security Analyst, Skill Horizon

"Great technical knowledge of OWASP vulnerabilities and excellent problem-solving abilities. Jai is proactive, learns quickly, and delivers quality work consistently."

Priya Sharma

Cybersecurity Mentor, AICE Jaipur

"Jai's ability to identify complex vulnerabilities and communicate security findings effectively makes him a valuable asset. His communication skills are excellent."

Arjun Singh

Project Manager, Redynox

Professional Experience

Cyber Security Intern

Skill Horizon, Jaipur
Aug 2025 – Oct 2025
  • Performed comprehensive web application security testing aligned with OWASP Top 10 standards, focusing on SQL Injection, XSS, and authentication vulnerabilities
  • Conducted reconnaissance, scanning, and vulnerability analysis using industry-standard tools including Burp Suite and Nmap in controlled lab environments
  • Documented identified vulnerabilities with detailed severity assessment, proof of concept (PoC) demonstrations, and actionable remediation recommendations

Cyber Security Intern

Redynox (Remote)
Sep 2025 – Oct 2025
  • Assisted in vulnerability assessment and penetration testing (VAPT) for web applications following industry security best practices
  • Supported security documentation and reporting by summarizing findings and providing comprehensive mitigation steps for identified risks
  • Analyzed common attack vectors including IDOR, security misconfiguration, and input validation issues

Notable Projects

ShadowRipper - Network Reconnaissance & Port Scanning Tool

Advanced Python-based network reconnaissance tool designed for comprehensive security assessments.

  • Domain-to-IP resolution and WHOIS lookup capabilities
  • Custom-range port scanning with service banner grabbing
  • SSL/TLS certificate detection and analysis
  • Exposed service identification and reporting

Web Application VAPT (Lab-Based Project)

Comprehensive vulnerability assessment on intentionally vulnerable web applications (DVWA / Juice Shop).

  • SQL Injection vulnerability identification and exploitation
  • Cross-Site Scripting (XSS) detection using Burp Suite and manual testing
  • Detailed vulnerability documentation with severity ratings
  • Recommended remediation strategies and best practices

Professional Certifications

Certified Ethical Hacker - Skill Horizon NextGen Pvt. Ltd.

Certified Penetration Tester - Skill Horizon NextGen Pvt. Ltd.

Certified Social Engineering Defense Practitioner (CSEDP) - The SceOps Group

Certified Network Security Practitioner (CNSP) - The SecOps Group

Introduction to Cybersecurity - Cisco Networking Academy

Linux Server (RHCSA) - IIHT, Jaipur

Key Achievements

Completed "Advent of Cyber 2025" challenge from TryHackMe, successfully completing 24 comprehensive cyber security challenges

Conducted web application penetration testing using DAST techniques aligned with OWASP Top 10 vulnerabilities

Participated in Capture the Flag (CTF) challenges, solving web exploitation and reconnaissance-based security tasks in controlled lab environments

Education

Bachelor of Technology (B. Tech) - Artificial Intelligence

Anand International College of Engineering, Jaipur

2023 – 2027