Bug Bounty Platforms

• Bugcrowd
  
  

• HackerOne
  
  

• PortSwigger Web Security Academy
  
  

Hands-on Experience

• Completed 50+ security labs covering:
  
  

  • XSS
    
    

  • SQL Injection
    
    

  • SSRF
    
    

  • CSRF
    
    

  • Authentication & authorization bypass
    
    

  • Deserialization attacks
    
    

• Performed vulnerability analysis on self-hosted applications using:
  
  

  • Burp Suite
    
    

  • OWASP ZAP
    
    

  • Custom Python scripts
    
    

Offensive Practice

• TryHackMe
  
  

• Hack The Box
  
  

• OverTheWire
  
  

Security Automation

• Built Python tools for:
  
  

  • Subdomain enumeration
    
    

  • Directory brute forcing
    
    

  • Endpoint discovery
    
    

  • Recon workflow automation