Hi, I'm Vaibhav

I'm

Senior Security Consultant at 4+ years of offensive security experience across Web & API security testing, Red Team operations, Mobile application security, Cloud environments, and Active Directory exploitation.

OSCP+ · eWPTX · CRTP certified, with experience assessing enterprise environments in banking, fintech, healthcare, and government sectors. Skilled in identifying complex attack paths, chaining vulnerabilities, and simulating real-world adversarial techniques to evaluate and strengthen organizational security posture.

Open to offensive security roles globally.

🔒 "Breaking applications before the bad guys do — so you don't have to worry about them."

CONTACT ME DOWNLOAD CV

Contact Me

Vaibhav Batra

Work Experience

Oct 2024 – Present

SENIOR SECURITY CONSULTANT — EY GDS (Ernst & Young)

Leading penetration testing engagements across web, API, mobile, network, and cloud for enterprise banking, fintech, and government clients.

  • Manual web & API pentesting (black & grey box) — OWASP Top 10, business logic, auth bypass, IDOR, SSRF
  • Red team ops: Active Directory attacks, credential harvesting, lateral movement, persistence
  • Cloud security: AWS IAM privilege escalation, S3 misconfigs, IaaS/SaaS/PaaS attack paths
  • Mobile: Android & iOS — SSL pinning bypass, runtime manipulation via Frida & Objection
  • Executive and technical report delivery to C-level stakeholders
Sep 2023 – Oct 2024

CYBER SECURITY CONSULTANT — GoAllSecure

Led red team assessments and full-scope penetration testing across network, web, API, and mobile for diverse industry clients.

  • Active Directory exploitation: Kerberoasting, Pass-the-Hash, DCSync, BloodHound enumeration
  • Phishing campaigns & social engineering via Evilginx credential harvesting and Gophish
  • Spoofing attacks and full adversary emulation exercises
  • Blue team collaboration on detection improvements and security hardening
Nov 2022 – Aug 2023

SECURITY ENGINEER — INVIA

Comprehensive security assessments across networks, applications, and systems with detailed remediation reporting.

  • Network & web application vulnerability assessments
  • Simulated attacks with documented findings and risk ratings
  • Technical report writing and client remediation guidance
Mar 2020 – Mar 2022

PENETRATION TESTER — Xtrude International

Real-world cyber attack simulation across client networks and web applications.

  • Web application and network penetration testing
  • Vulnerability identification, exploitation, and documentation
  • Detailed remediation recommendations and client reporting

Technical Skills

🌐 Web & API Pentesting

Manual black & grey box testing of web apps and REST/GraphQL APIs. Deep expertise in OWASP Top 10 — SQLi, XSS, SSRF, XXE, IDOR, auth bypass, OAuth misconfigs, and business logic flaws. Core stack: Burp Suite Pro, ZAP, ffuf, sqlmap.

🏰 Red Team & Active Directory

Full red team operations — AD enumeration and exploitation via BloodHound, Mimikatz, Rubeus. Kerberoasting, Pass-the-Hash, DCSync, Golden/Silver tickets, lateral movement, and persistence. Phishing with Evilginx & Gophish.

📱 Mobile Security

Android & iOS penetration testing end-to-end. Static analysis with MobSF & Jadx, dynamic analysis with Frida & Objection, ADB manipulation, SSL pinning bypass, and Checkra1n for iOS jailbreaking.

☁️ Cloud & Network Security

AWS security assessments: IAM privilege escalation, S3 bucket misconfigs, IaaS/SaaS/PaaS attack paths. Network recon with Nmap & Naabu, Wireshark packet analysis. Docker, Kubernetes, and CI/CD pipeline security with SonarQube.

🎣 Phishing & Social Engineering

Adversary simulation using Evilginx2 for credential harvesting with MFA bypass, Gophish phishing campaigns, pretexting and vishing scenarios. Full social engineering kill-chain for red team engagements targeting enterprise environments.

🔍 Recon, OSINT & Tooling

Attack surface discovery via Subfinder, Amass, ffuf, Shodan and Censys. Python & Bash scripting for automation and custom tooling. OS environments: Kali Linux, macOS, Windows. Strong technical and executive report writing.

Certifications & Credentials

OffSec OSCP+ OffSec Certified Professional Plus

OSCP+

Issued by: Offensive Security

Date: December 12, 2025

OSID: 57166646

View Certificate
OffSec OSCP OffSec Certified Professional

OSCP

Issued by: Offensive Security

Date: December 12, 2025

View Certificate
eLearnSecurity eWPTX Web App Pentesting eXtreme v2

eWPTX v2

Issued by: eLearnSecurity

Date: February 23, 2022

ID: 3205833

View Certificate
Altered Security CRTP Certified Red Team Professional

CRTP

Issued by: Altered Security

Date: September 20, 2024

ID: ADLID7452

View Certificate
AWS Security AWS Certified Security — Specialty

AWS Certified Security — Specialty

Issued by: Amazon Web Services (AWS)

Status: Pursuing

JLPT N5 Japanese Language Proficiency

JLPT N5

Issued by: The Japan Foundation

Date: July 7, 2019

ID: N5A238977A

View Certificate

Writeups & Notes

OSCP Guidebook

📋

Personal OSCP Handbook

Full OSCP methodology, privesc checklists, exploitation techniques and tooling built through PEN-200 lab work.

CRTP Notes

🏰

CRTP Notes

Active Directory attack paths, Kerberoasting, BloodHound enumeration, lateral movement, and persistence techniques.

PG & HTB Checklist

Checklist

Concise HTB machine solutions covering Linux & Windows — SSRF, SQLi, LFI, command injection, privesc chains and more.

HTB Labs Walkthrough

🔬

Walkthrough

Detailed walkthroughs of HTB machines with full enumeration, exploitation paths, and privilege escalation breakdowns.

Web Security Notes

🕸️

web

Vulnerability patterns, payload collections, and methodology notes from real-world engagements and PortSwigger labs.