Abhishek Mani Tiwari

Led penetration testing efforts across web, mobile, network, IoT, and cloud environments to uncover security vulnerabilities. Spearheaded dynamic application security testing (DAST) projects to strengthen application defenses. Coordinated red team activities, including breach attack simulations (BAS) and purple teaming collaborations, to improve organizational security strategies.

Led penetration testing initiatives across web, mobile, API, and cloud platforms to enhance organizational security protocols. Oversaw DAST implementation and pipeline integration using Qualys tools within the Infosys DevSecOps framework. Championed security best practices and improved overall risk management strategies.

Conducted comprehensive vulnerability assessments and penetration testing (VAPT) for web, API, mobile (iOS), and IoT/firmware targets. Led full-scope red teaming exercises to uncover critical infrastructure flaws, specializing in Active Directory (AD) exploitation and domain security.

Led comprehensive penetration tests across web, mobile, iOS, network, and IoT environments. Oversaw source code reviews, enhancing security measures against potential threats. Spearheaded reverse engineering efforts to analyze malware binding techniques in Android applications using Smali code.

• VAPT & Red Teaming: Executed comprehensive penetration testing across web applications, network devices, and mobile environments (Android/iOS), alongside full-scope red teaming operations.
• Hardware & Reverse Engineering: Performed deep-dive vulnerability research utilizing memory and binary analysis, coupled with IoT hardware exploitation and firmware reverse engineering using standard debugging protocols (JTAG, UART, SPI, I2C).

Executed comprehensive penetration tests on iOS and web applications, identifying vulnerabilities. Achieved significant insights into memory management and encryption weaknesses. Delivered critical analysis reports that informed security enhancements and risk mitigation strategies.