Cybersecurity Analyst

PRATYAKSHA
JOSHI

Penetration tester specializing in web application security

Dedicated to identifying and mitigating security vulnerabilities through comprehensive penetration testing, security auditing, and defensive strategies. Expert in OWASP methodologies with hands-on experience in real-world security assessments.

4+
Certifications
10+
Projects
100+
Labs Completed
View Work
SECURITY
01
Expertise

TECHNICAL
SKILLSET

A comprehensive arsenal for modern penetration testing and security assessment

Web Security

  • OWASP Top 10 Vulnerabilities
  • SQL Injection & XSS Exploitation
  • CSRF & Authentication Bypass
  • Session Management Attacks
  • File Upload Vulnerabilities
  • API Security Testing

Penetration Testing

  • Burp Suite Professional
  • OWASP ZAP & Nikto
  • Metasploit Framework
  • SQLmap & WPScan
  • Nmap & Wireshark
  • Gobuster & Hydra

Programming

  • Python Security Scripts
  • Bash Automation
  • PHP & SQL
  • JavaScript
  • PowerShell

Operating Systems

  • Kali Linux
  • Ubuntu & Debian
  • Parrot Security OS
  • Windows Server

Administration

  • Linux Server Admin
  • WordPress Security
  • Apache & Nginx
  • MySQL Security
  • Firewall Config

Security Frameworks & Methodologies

  • OWASP Testing Guide
02
Portfolio

PROJECTS

Real-world security assessments and penetration testing initiatives

01
Security Assessment

WordPress Penetration Testing

Conducted comprehensive security audits of WordPress installations, identifying critical plugin vulnerabilities, misconfigurations, and weak authentication mechanisms. Implemented advanced security hardening measures including file permission corrections, database security enhancements, and WAF rule configurations following OWASP guidelines.

WPScan Burp Suite Security Hardening WAF OWASP
02
Infrastructure Security

Linux Server Hardening

Configured and secured production Linux servers implementing CIS Benchmark security controls. Developed automated shell scripts for continuous security auditing, log monitoring, and intrusion detection. Implemented advanced firewall rules using iptables/UFW and enforced SELinux policies for enhanced system security.

CIS Benchmarks iptables SELinux Bash Automation
03
Hands-On Training

Web Application Pentesting Labs

Completed extensive hands-on penetration testing labs on platforms including HackTheBox, TryHackMe, and PortSwigger Web Security Academy. Systematically exploited OWASP Top 10 vulnerabilities and developed Python automation scripts for reconnaissance, fuzzing, and vulnerability scanning with professional CVSS scoring and comprehensive reporting.

SQL Injection XSS IDOR Python CVSS
03
Credentials

PROFESSIONAL
CERTIFICATIONS

Industry-recognized certifications validating expertise in cybersecurity

Armour Infosec

WordPress Security Expert

Specialized training in WordPress vulnerability assessment, exploitation techniques, and comprehensive security hardening methodologies. AICWSE certified.

Armour Infosec

Linux Server Administrator

Comprehensive Linux system administration, security configuration, and advanced server hardening expertise. AICLSA certified.

Armour Infosec

Windows Server Administrator

Windows server security, Active Directory management, and system administration proficiency. AICWSA certified.

Programming

Python Programming

Programming fundamentals with focus on security automation, scripting, and security tool development.

LET'S
CONNECT

Open to opportunities in web application security and penetration testing

📧
EMAIL
hello@pratyakshajoshi.work
💼
LINKEDIN
Connect with me
💻
GITHUB
View my code