Prateek P
Application Security Penetration Testing Practitioner
Competenze

Consulta i miei servizi

Portfolio
Esperienza lavorativa
Independent Security Researcher
Freelancer.com • Lavoratore autonomo
Apr 2025 - Present • 1 yr 3 mos
I work as an independent security researcher across multiple bug bounty platforms, finding and responsibly disclosing vulnerabilities in production software and open-source projects. My focus spans web application security and AI/ML system security — including a critical sandbox-escape vulnerability (CVSS 9.9) in an open-source AI agent framework, and a path traversal detection bypass in a runtime application security product, both submitted through coordinated disclosure programs. I also compete in security CTFs to stay sharp on exploitation techniques across web, infrastructure, and emerging attack surfaces. In May 2026 I completed a multi-vulnerability CTF chain involving IDOR, DOM clobbering, and XSS, and published a full technical writeup. This work keeps me current with how real attackers actually find and exploit vulnerabilities, not just how compliance checklists assume they do. It's the same mindset I bring to every client engagement: read the actual implementation, question what the documentation claims, and test the assumptions a system is quietly relying on. Active on HackerOne, Bugcrowd, huntr.com, and Intigriti, with CLLMSP (Certified LLM Security Professional, June 2026) as a focus credential for AI/LLM-specific testing work.