Help & Supportcareers@gravityer.com
AI is analyzing your overall score…
Identifying your key strengths…
Evaluating your skill match against the job requirements…
Assessing your cultural and operational fit
Cyber security- VAPT with 3+ years in vulnerability assessments & penetration testing.
Cybersecurity professional with 2+ years of hands-on experience in offensive security, vulnerability assessments, penetration testing, source code security review, and security research, complemented by experience in Security Operations (SOC). Skilled in identifying and validating web application and API vulnerabilities through manual penetration testing, bug bounty programs, and independent security research. Successfully reported 35+ security vulnerabilities across multiple platforms and discovered CVE-2025-15170. Experienced in web, API, and source code security assessments, including authentication and authorization flaws, business logic vulnerabilities, injection attacks, and insecure coding practices. Proficient with Burp Suite, Nmap, Wireshark, Nessus, Metasploit, Linux, and Python-based security automation. Strong understanding of OWASP Top 10, secure development principles, vulnerability remediation, and modern offensive security methodologies. Passionate about continuous learning, security research, and helping organizations strengthen their security posture through proactive vulnerability discovery and responsible disclosure.
B.Tech in Computer Science Engineering
B.Tech · Computer Science Engineering
August 1, 2020 – June 30, 2024
Ramanasoft Consultancy
Offensive Security intern
November 1, 2025 – Present
Hyderābād, Telangana, India
Student Mitra
Freelance Security Consultant
August 1, 2025 – August 31, 2025
India
Independent
Security Researcher & Bug Bounty Hunter
January 1, 2024 – Present
India
Virtual Private Server to detect New subdomains and find automate vulnerability scanning
April 1, 2026 – May 31, 2026
Developed a Python script to automate the subdomain enumeration to find new subdomains and find vulnerabilities using nuclei and perform JS recon by crawling urls to find hidden API endpoints and private APIs, alongside testing for vulnerabilities like Prototype pollution, XSS and etc. The whole process is performed every hour by setting up a cronjob in VPS for effective finding. Automated subdomain enumeration, vulnerability scanning with nuclei, and JavaScript recon via Python on a VPS, running hourly via cron job to detect new subdomains and hidden API endpoints depending upon the technology used.
Certified Ethical Hacker (CEH)
Unknown
June 1, 2026 – Present
Red Hat Certified System Administrator
Unknown
June 1, 2026 – Present
Cultural Fit Analysis
The candidate's profile shows a strong alignment with a proactive security culture, emphasizing continuous learning, vulnerability discovery, and responsible disclosure. Their freelance and bug bounty experience suggests an independent and results-oriented approach. The diversity of projects and roles (intern, freelance consultant, researcher) indicates adaptability and a broad interest in various aspects of cybersecurity, which could contribute positively to a dynamic team environment.
Soft Skills & Operational Fit
The candidate demonstrates strong initiative and self-direction through independent security research and bug bounty hunting. The ability to produce detailed technical reports and collaborate with senior consultants indicates good communication and teamwork potential. The continuous learning aspect is evident from the pursuit of certifications and active engagement in security research.