Professional Summary
Cyber Security professional with hands-on experience in Web Application Penetration Testing, VAPT, and DAST. Skilled in identifying OWASP Top 10 vulnerabilities including SQL Injection, XSS, authentication and authorization flaws. Experienced with industry-leading tools such as Burp Suite, Nmap, and Linux-based security testing environments.
Currently pursuing B.Tech in Artificial Intelligence while actively seeking an entry-level role as a Penetration Tester or Security Analyst to contribute to organizational security posture.
Technical Expertise
Security Specializations
- Web Application Penetration Testing (OWASP Top 10)
- Vulnerability Assessment & Penetration Testing (VAPT)
- Dynamic Application Security Testing (DAST)
- Ethical Hacking
Vulnerability Types
- SQL Injection
- Cross-Site Scripting (XSS)
- Cross-Site Request Forgery (CSRF)
- Insecure Direct Object References (IDOR)
- File Upload Vulnerabilities
Security Tools
- Burp Suite
- Nmap
- Nikto
- SQLmap
- OWASP ZAP
Core Competencies
- Networking (TCP/IP, DNS, HTTP/HTTPS)
- Linux Administration
- Port Scanning & Reconnaissance
- Vulnerability Reporting & Remediation
Achievement Metrics
Vulnerabilities Found
Critical & High Severity Issues Identified
Security Tests
Web Applications Analyzed
Certifications
Industry-Recognized Credentials
Success Rate
Test Completions & Deliverables
Capture The Flag & Bug Bounty
CTF Participations
- HackTheBox: 20+ machines rooted
- TryHackMe: 40+ challenges completed
- OWASP Top 10 Labs: All scenarios mastered
Vulnerability Disclosure
- Bug Bounty: Active on HackerOne, Bugcrowd
- Responsible Disclosure: Multiple vendors contacted
- CVE Research: Tracking latest vulnerabilities
OWASP Top 10 Mastery
- Injection: SQL, Command, LDAP
- Authentication: Session & Access Control Flaws
- XSS & CSRF: Advanced payload techniques
Skill Proficiency
Burp Suite
Expert90%
SQL Injection Testing
Expert85%
Nmap & Scanning
Advanced80%
Linux Security
Advanced75%
XSS & CSRF Exploitation
Intermediate78%
Vulnerability Reporting
Expert88%
Testimonials & Recommendations
"Jai demonstrated exceptional skill in vulnerability assessment and penetration testing. His attention to detail and thorough documentation of findings were impressive. Highly recommended for any cybersecurity role."
"Great technical knowledge of OWASP vulnerabilities and excellent problem-solving abilities. Jai is proactive, learns quickly, and delivers quality work consistently."
"Jai's ability to identify complex vulnerabilities and communicate security findings effectively makes him a valuable asset. His communication skills are excellent."
Professional Experience
Cyber Security Intern
Skill Horizon, Jaipur- Performed comprehensive web application security testing aligned with OWASP Top 10 standards, focusing on SQL Injection, XSS, and authentication vulnerabilities
- Conducted reconnaissance, scanning, and vulnerability analysis using industry-standard tools including Burp Suite and Nmap in controlled lab environments
- Documented identified vulnerabilities with detailed severity assessment, proof of concept (PoC) demonstrations, and actionable remediation recommendations
Cyber Security Intern
Redynox (Remote)- Assisted in vulnerability assessment and penetration testing (VAPT) for web applications following industry security best practices
- Supported security documentation and reporting by summarizing findings and providing comprehensive mitigation steps for identified risks
- Analyzed common attack vectors including IDOR, security misconfiguration, and input validation issues
Notable Projects
ShadowRipper - Network Reconnaissance & Port Scanning Tool
Advanced Python-based network reconnaissance tool designed for comprehensive security assessments.
- Domain-to-IP resolution and WHOIS lookup capabilities
- Custom-range port scanning with service banner grabbing
- SSL/TLS certificate detection and analysis
- Exposed service identification and reporting
Web Application VAPT (Lab-Based Project)
Comprehensive vulnerability assessment on intentionally vulnerable web applications (DVWA / Juice Shop).
- SQL Injection vulnerability identification and exploitation
- Cross-Site Scripting (XSS) detection using Burp Suite and manual testing
- Detailed vulnerability documentation with severity ratings
- Recommended remediation strategies and best practices
Professional Certifications
Certified Ethical Hacker - Skill Horizon NextGen Pvt. Ltd.
Certified Penetration Tester - Skill Horizon NextGen Pvt. Ltd.
Certified Social Engineering Defense Practitioner (CSEDP) - The SceOps Group
Certified Network Security Practitioner (CNSP) - The SecOps Group
Introduction to Cybersecurity - Cisco Networking Academy
Linux Server (RHCSA) - IIHT, Jaipur
Key Achievements
Completed "Advent of Cyber 2025" challenge from TryHackMe, successfully completing 24 comprehensive cyber security challenges
Conducted web application penetration testing using DAST techniques aligned with OWASP Top 10 vulnerabilities
Participated in Capture the Flag (CTF) challenges, solving web exploitation and reconnaissance-based security tasks in controlled lab environments
Education
Bachelor of Technology (B. Tech) - Artificial Intelligence
Anand International College of Engineering, Jaipur
2023 – 2027