• Red Teamer • Security Specialist • Developer
I am a CRTO certified Red teamer with an OSCP and OSCP+ certified professional with additional CEH credentials, combining formal training with practical offensive security expertise.
Offensive security specialist, with hands-on focus on Active Directory exploitation, Cobalt Strike-based adversary emulation, and web, network, and wireless assessment methodology. Self-directed engagement portfolio includes 21 HTB-style web application assessments with full proof-of-concept and remediation documentation, 60+ OSWE-style and PortSwigger Academy exploit-development challenges, and structured wireless penetration testing using the Aircrack-ng suite. Brings a production software engineering background (Python, Docker, AWS) — direct knowledge of how systems are built and deployed translates into faster identification of how they break. Publishes original technical research on Active Directory, web application security, and privilege-escalation chains covering end-to-end attack chains at youtube.com/@Aravindaakumar.
21 applications assessed over 3 months using HTB-style/CTF methodology, averaging 2 confirmed vulnerabilities per target, with full PoC and remediation reporting
60+ OSWE-style and PortSwigger Academy challenges solved via white-box source code review and custom Python exploit scripting
WPA2 handshake capture and offline cracking, deauthentication attacks, and WEP cracking using the Aircrack-ng suite against a self-built lab environment, with full attack-path documentation from initial access through objective completion
Publish technical breakdowns on YouTube of Active Directory, Linux, and Windows privilege-escalation chains, documenting full attack paths end to end