Cybersecurity Student Β· Aspiring Ethical Hacker Β· Security Tool Builder
B.Tech Computer Science (Cybersecurity) student at Ramrao Adik Institute of Technology, D.Y. Patil Deemed to be University, building practical security tools and competing in CTFs while leading a 30-person technical team as IEEE Student Branch Technical Head.
- π Currently building: client-side security tools (steganography, password auditing) and preparing for roles in VAPT and threat detection
- π‘οΈ Recently: completed a Cybersecurity Internship at Elevate Labs, covering VAPT and SIEM-based incident response
- π― Organized: Technovate CTF β a national-level CTF I ran independently, securing βΉ9+ Lakhs in sponsorship through direct outreach
- π± Currently learning: Number Theory and Generative AI / agentic systems
- π― Looking to collaborate on: AI-assisted defensive security tooling
- π€ Looking for guidance on: advanced malware analysis
- π¬ Ask me about: penetration testing, SIEM (Splunk/Wazuh), CTF strategy, applied cryptography, or AI tooling
- π« Reach me: LinkedIn Β· yash18xd@gmail.com
| π₯ | AI Security CTF Challenge β Winner, Redfox Security (Jan 2026) |
| π© | SecLeaf Q2 CTF 2026 β Rank 48 / Top 7% Global (May 2026) |
| π― | TryHackMe β Top 2% Global, 190+ rooms solved |
| π΄ | HackTheBox β Cyber Apocalypse CTF 2025 β Top 19% (1519 / 8130 teams) |
| π© | Boro CTF 2026 β Rank 59 Global |
| π | Samsung Innovation Campus β AI & Machine Learning Certification |
SteganoGuard β Client-side LSB steganography tool with AES-256-GCM encryption and HMAC-SHA256 integrity verification. Hides messages inside PNG/BMP images with zero server-side data transmission.
Password Guardian β Privacy-first password strength analyzer with real-time entropy scoring and HaveIBeenPwned breach detection via k-anonymity β the actual password never leaves the browser.
SIEM Dashboard β Self-hosted SIEM dashboard with syslog ingestion, a declarative correlation engine for detecting brute-force/port-scan/injection attacks, JWT-secured REST API, and a live React dashboard. FastAPI + SQLAlchemy backend, tested with pytest, CI'd on every push.
Penetration Testing & Analysis: Nmap Β· Wireshark Β· Burp Suite Β· Metasploit Β· Nikto Password & Hash Analysis: John the Ripper Β· Hydra Β· Hashcat SIEM / Detection: Splunk Β· Wazuh Frameworks & Standards: OWASP Top 10 Β· MITRE ATT&CK Β· CVE Analysis Β· Zero Trust Security Domains: Vulnerability Assessment Β· Incident Response Β· Threat Intelligence Β· Network Security Β· OSINT