Passionate about testing for vulnerabilities on web applications, network infrastructure, cloud, wireless and mobile applications. Experience with Penetration Testing on multiple enterprises with a great sense of pride in providing well documented Penetration Test Reports. Identifying multiple security vulnerabilities within applications as well as network infrastructure. Conducted External Penetration test making use of Burp Suite Professional
to assess web vulnerabilities while manually exploiting them, test default credentials with file upload vulnerabilities that allow no restrictions on file types. Performed Internal Penetration Test while making use of tools like ‘certipy’ to take advantage of Active Directory Certification Service exploits that when enrolment is allowed by any domain user can be critical to the environment. Conducting Wireless penetration test and checking that guest Wi-Fi networks don`t allow access to the internal environment.