Summary
Work History
Education
Skills
Accomplishments
Timeline
Generic

Sai Krishna Sobila

Plainsboro,NJ

Summary

As an active bug bounty hunter on Hackerone , Hackenproof and Bugcrowd I have successfully discovered and helped resolve critical vulnerabilities on several major organizations' platforms. Through HackerOne, I uncovered authentication bypass, IDOR, and other flaws in cryptocurrency exchanges like Coinbase, Avalanche, and Coinmetro, preventing potential exploitation of these issues. I have also received recognition in Domino's Hall of Fame for my responsible disclosure of a valid security bug on Domino's website. Additionally, I have participated in Hackenproof programs to find and report vulnerabilities in companies like Gate.io and Bunicorn. My work has helped safeguard these organizations against risks like remote code execution, privilege escalation and broken access control.

Work History

Intern

Next Speed Technologies
07.2022 - 12.2022
  • Performed security assessments on 3 company web applications using OWASP guidelines
  • Developed an automated security scanning pipeline to identify vulnerabilities in code commits
  • Recommended remediation roadmap for top 5 application security risks identified
  • Detected PII leakage vulnerability and coordinated responsible disclosure
  • Conducted penetration testing to uncover authentication bypass, IDOR, Privilege
  • Escalation and other critical flaws
  • Collaborated with the security team to provide remediation recommendations
  • Gained hands-on experience in testing and mitigating security risks
  • Highlighting the specific critical vulnerability you found (PII leakage) further demonstrates the security skills and achievements gained through this role.

Education

Maters - Information Systems with focus Cyber Security

Stevens Institute of Technology
Jersey, New

Under Graduation - Electronics and Communication Engineering

KL UNIVERSITY

Skills

  • Technical Skills
    Programming : Python, Solidity, Java
    Web App Testing: Burp Suite, OWASP ZAP, Nmap
    Network Security: Nessus, Wireshark
    Smart Contracts: Hardhat, MythX
    Static Analysis: Semgrep, SonarQube
  • Other Skills:
    Cloud Security: AWS, Azure
    Containers: Docker, Kubernetes
    Databases: MongoDB, MySQL

Accomplishments

  • As an active bug bounty hunter on Hackerone , Hackenproof and Bugcrowd I have successfully discovered andhelped resolve critical vulnerabilities on several major organizations' platforms
    Through HackerOne, I uncovered authentication bypass, IDOR, and other flaws in cryptocurrency exchanges like
    Coinbase, Avalanche, and Coinmetro, preventing potential exploitation of these issues.

  • I have also received recognition in Domino's Hall of Fame for my responsible disclosure of a valid security bug on Domino's website
    Additionally, I have participated in Hackenproof programs to find and report vulnerabilities in companies like Gate.io and Bunicorn
    My work has helped safeguard these organizations against risks like remote code execution, privilege escalation and broken access control.

  • Catching a Bug in Under 12 Minutes
    Wrote article as a HackenProof community member documenting the process of quickly discovering and reporting an information disclosure vulnerability through endpoint testing
    Demonstrated ability to identify valid security bugs and effectively communicate vulnerability assessment techniques and findings
    Highlighted the importance of endpoint testing in addition to traditional web application scanning
    Article link: https://medium.com/hackenproof/catching-a-bug-in-under-12-minutes-bc2b66fb77

Timeline

Intern

Next Speed Technologies
07.2022 - 12.2022

Maters - Information Systems with focus Cyber Security

Stevens Institute of Technology

Under Graduation - Electronics and Communication Engineering

KL UNIVERSITY

Similar Profiles

CREATE PROFILE
Sai Krishna Sobila