Description

"Certified Ethical Hacker delivering hands-on penetration testing and vulnerability assessments for SMEs. Proven track record discovering critical vulnerabilities for ORF (Austrian Broadcasting Hall of Fame), European Central Bank (Reflected XSS in Citrix Gateway), Paradigm (exposed access keys), and Global.com (SMTP flaws). Freelance bug bounty hunter on HackerOne since 2022."

Hands-On Expertise:

Web App Pentesting: Burp Suite, OWASP Top 10, XSS/SQLi/API exploits

Network Scanning: Nmap, Nessus, Wireshark, Linux hardening

Recon & OSINT: Digital footprinting, social engineering detection (Gurugram Police internship)

Tools: Metasploit, Kali Linux, Active Directory attacks, cloud (AWS) security

Free initial scans converting to 80% paid work

Recent Wins:

ORF Hall of Fame for security misconfiguration

ECB Citrix Gateway XSS vulnerability

Multiple private program acknowledgements

Availability: Immediate | Derby/Mansfield based/London All over UK | Remote delivery

Rate: £50-£75/hour | £500 basic web pentest

Contact: | LinkedIn: saran-s-0a09921ba

"I hunt vulnerabilities so your business doesn't become the next victim. Free 30min scan?"

Languages

English
Native or bilingual

Workplace preferences

Remote only

Primarily works remotely

HackerOne & Independent Platforms
Bug Bounty
DIGITAL AND IT
January 2022 - Today (4 years and 5 months)
London, UK
Part-time freelance researcher contributing to security improvement initiatives across global platforms. Identified and responsibly disclosed critical and high-severity vulnerabilities affecting web applications, APIs, and authentication workflows.
Cybersecurity Wireshark PenTest Audit Nessus
Reliance Digital
System Administrator
April 2019 - October 2021 (2 years and 6 months)
Salem, Tamil Nadu, India
Managed user accounts, access controls, and authentication, improving security hygiene. Monitored network performance and resolved system issues, reducing downtime. Performed routine patching, updates, and vulnerability checks for desktops and POS systems. Implemented basic security controls and strengthened endpoint protection.
Cybersecurity Division
Cybersecurity Intern
April 2021 - September 2021 (5 months)
Delhi, India
Assisted in detecting phishing emails, social engineering attempts, and deepfake content. Performed OSINT investigations against cybercriminal activity on social media platforms. Supported digital evidence collection and analysis workflows. ID: GPCSSI2021