I’ve got some experience in Web-app security, Mobile app security, API security, Network Security, Vulnerability Assessment & Penetration Testing. I’m well experienced with the tools like burp suite, Nessus, Nmap, Pentest tools, Postman, Drozer, and some of the SIEM tools. I use Parrot security OS & some of the open-source tools like Amass, sqlmapper…etc for finding the vulnerabilities in the web application and mobile application as well. Being a security researcher I have came across a few vulnerabilities such as account takeover, SQL injections, Broken Access Control like IDOR, and few series of vulnerabilities leading to account takeover. LFI, RFI, CSRF, XSS, are some of my favourites. My main focus is on OWASP Top 10 security issues.