Kali Linux
Terminal
Burpsuite
Postman
Metasploit
Vinay Sharma

Vinay Sharma

APPLICATION SECURITY ENGINEER

Vulnerabilities Officially Acknowledged By

PCU
NASA
WHO
Adidas
Eduplus
PCU
NASA
WHO
Adidas
Eduplus

About Me

I am a passionate Security Researcher and VAPT specialist currently pursuing my BTech in Computer Science at Pimpri Chinchwad University (9+ CGPA). My journey in cybersecurity is driven by a deep curiosity to uncover vulnerabilities before they are exploited.

I've had the honor of being officially recognized by NASA, WHO, Harvard University, and Eduplus for reporting valid security vulnerabilities. Recently, I uncovered a critical vulnerability (CVE-2025-61148) that impacted over 150+ colleges and universities, securing sensitive data across the educational sector.

Whether it's building a 100kV EMP generator or engineering an asynchronous data wipe engine, I thrive at the bleeding edge of security and engineering.

Technical Arsenal

Pentesting Web Security Networking Protocols OWASP Top 10 Burpsuite Metasploit Scripting & Automation MITRE ATT&CK Secure Code Review Threat Modeling DevSecOps Knowledge API Security Expertise Communication & Reporting

Featured Work

Aug 2025 – Jan 2026

Destroyer Project

Secure Data Wiping for Trustworthy IT Asset Recycling

Engineered a cross-platform data destruction software for Linux and Windows using Python and Flask, featuring a REST API, interactive CLI, and an asynchronous wipe engine supporting multiple erasure standards.

Python Flask REST API
June 2024 – Oct 2024

DDoS Detection ML Model

Cybersecurity Research – Deep Learning, Explainable AI

Trained a hybrid machine learning and deep learning framework integrating Logistic Regression, Random Forest, Neural Networks, and Genetic Algorithms to detect low- and high-rate DDoS attacks, achieving 99.35% accuracy.

Deep Learning Explainable AI SDN
April 2024 - May 2024

Hybrid EMP-Cyber Warfare

High Voltage Electromagnetic wave system

Engineered a 100kV Marx Generator with a helical coil to induce transient EMP surges on unshielded IoT devices, integrated with a cyber warfare layer featuring deauth attacks, rogue APs, and WPA2 brute-forcing.

Hardware Design RF Attacks Hashcat

Experience

Mar 2024 – Apr 2024

Penetration Testing Intern

Shadowfox Security (Remote)
  • Performed penetration testing on intentionally vulnerable web applications.
  • Conducted Wi-Fi security assessments and simulated real-world attack scenarios.
  • Practiced SQL injection, XSS, and other common web exploits.
  • Documented vulnerabilities and provided detailed mitigation reports.

Certifications

APIsec Certified Practitioner

APIsec

Certified Network Security Practitioner (CNSP)

The SecOps Group

Certified Web Security Expert

Hackviser

Google Cybersecurity Specialization

Google / Coursera

Master Cybersecurity Management

LinkedIn Learning

Achievements & Gallery

Moments from hackathons, team wins, and prize distributions.

Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image
Gallery Image

Content Creation

Sharing my cybersecurity knowledge and research through videos and articles.

My Videos

What is adb android debugger

What is adb android debugger | mobile application pentesting

Android Debug Bridge (ADB) is one of the most powerful tools for Android developers, bug hunters, and security testers.

Watch Now
Static and dynamic Analysis

Static and dynamic Analysis in android application pentesting

In mobile security, tools don't find vulnerabilities — thinking does. We break down Static vs Dynamic Analysis.

Watch Now

My Articles

New Web Feature Gone Wrong: SQL Injection

A deep dive into how a newly shipped web feature ended up exposing a critical SQL injection vulnerability.

Read Full

NASA HOF: How did I get this

My journey to being recognized in the NASA Hall of Fame for discovering and reporting critical vulnerabilities.

Read Full

Have you ever hacked a Library system?

A unique penetration test walking through the exploitation of a physical and digital library infrastructure.

Read Full

How I hacked all universities in my city

A deep dive into discovering a critical zero-day vulnerability (CVE-2025-61148) that impacted over 150+ colleges.

Read Full

Balancing Cybersecurity studies with College Life

Personal insights and time-management strategies on balancing intensive security research alongside a 9+ CGPA.

Read Full

Ready to secure your infrastructure?

I'm always open to discussing web security, penetration testing, or unique project opportunities.

Let's Connect