Harsh Bothra

Download CV

~ Hello World ~ I am Harsh Bothra

Working Day & Night to make Cyber Space safe & secure.

About Me

Hey World, I am Harsh Bothra. Here's a little about me :)

Harsh Bothra is currently working as a Senior Security Consultant at RedHunt Labs and is also one of the Core Pentester & Team Lead at Cobalt.io. He holds a bachelors degree in Computer Science & Engineering, and his significant interests revolve around Application Security, Penetration Testing & Red Teaming. Harsh loves to participate in various bug bounty programs and are currently ranked under Top 180 Researchers & MVP for 2020 Q1-Q2 on Bugcrowd and is a part of Synack Red Team. He actively blogs about his security findings and interesting learnings on Medium Publications. He has authored two books on Hacking, primarily focusing on beginners. Harsh's book has been previously recommended by NITTR-Chandigarh & AICTE (Govt. of India bodies). He holds 60+ Hall of Fames from various companies and tested over 600+ Applications. He loves to talk about multiple cyber security stuff and has carried out many sessions related to Cyber Security, Ethical Hacking & Application Security. He is always ready to support and mentor people the best way he can. Harsh recently completed his one year long learning challenge named as Learn365

Download CV

Skills

Web Application Penetration Testing

API Penetration Testing

Internal & External Network Penetration Testing

Mobile Application Penetration Testing (Android & iOS)

Source Code Review

Cloud & Container Configuration Review [AWS, Azure & Docker]

Thick Client Penetration Testing

Security Tools - Burp Suite, Nmap, Metasploit, Sqlmap & Others

Python, Php, Bash, Javascript

Writing & Communication - Blogs, Articles & Reports

Experience

Cobalt Core

Core Team Lead & Pentester

November 2020 - Present

Featured Pentester @https://cobalt.io

Performing Penetration Testing on Web Application, Network, Mobile, Thick Client and Cloud Configuration Reviews for the top clients world-wide. As a team lead, I am responsible to successful execution of a penetration testing, ensuring quality and collaboration between the testing team along with vulnerability triaging and reviewing.

RedHunt Labs

Senior Security Consultant

March 2021 - February 2022

Wprked as a Senior Security Consultant at RedHunt Labs, my responsibilities included end-to-end penetration testing, open source intelligence, configuration review, reporting and client communication.

Detox Technologies

Cyber Security Analyst

August 2020 - February 2021

Worked as a Cyber Security Analyst at Detox Technologies, my responsibilities included Manual Penetration Testing of Web Application, Internal and External Network, APIs, Mobile Applicaiton, Thick Clients, Threat Modeling, Cloud Configuration Review, Phishing Simulation, Red Teaming Simulation, Reporting & Documentation. Apart from that I work along with team to implement knowledge transfer, implementing streamlined approach to penetration testing, providing knowledge to public via blogs & pre-recorded sessions.

Security Innovation

Security Engineer

August 2019 - August 2020

Worked as a Security Engineer at Security Innovation, my responsibilities included Manual Penetration Testing of Web Application, Internal and External Network, APIs, Mobile Applicaiton, Thick Clients, Threat Modeling, Cloud Configuration Review, Reporting & Documentation.

Synack Red Team

Red Team Member

April 2020 - Present

Accessing & Securing the applications.

Bugcrowd

Freelance Researcher

February 2020 - Present

Accessing & Securing applications.

Cyber Square Info Solutions

Founder

September 2017 - August 2019

Projects & Publications

SecurityExplained

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.