SHIVANI GUPTA
Jodhpur
Summary
Malware researcher with 4+ years of proven expertise in analyzing, reversing, and detecting malware across Windows environments. Skilled in signature writing (string-based, telemetry, imphash), threat intelligence (OSINT, MITRE ATT&CK), and network forensics. Adapt with tools like IDA Pro, Wireshark, OllyDbg, and ELK Stack. Passionate about combating cyber threats through deep malware analysis and automation.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Microsoft Defender: BIT Research Project
LTI Mindtree
Pune
09.2022 - 08.2023
- Spearheaded comprehensive malware research using Microsoft Defender within BIT Research Project.
- Conducted meticulous static and dynamic analysis of malware samples in controlled environments.
- Crafted precise string-based signatures to improve threat detection accuracy.
- Authored advanced telemetry and imphash-based signatures for enhanced defense strategies.
- Executed Appesteem tasks to guarantee software integrity and compliance standards.
Cyborg Threat Detection and Updation
Loginsoft Pvt. Ltd
Hyderabad
05.2022 - 06.2022
- Leveraged OSINT and advanced tools for MITRE framework event correlation in Cyborg Threat Detection.
- Conducted thorough network traffic analysis and event log correlation to identify malicious activities.
- Developed SIGMA-based detection signatures to strengthen cybersecurity protocols.
- Managed and updated internal tools, including malware sandboxes and indicator databases.
- Utilized Kibana and Elasticsearch for effective log analysis and event management.
- Demonstrated strong understanding of fundamental internet protocols, including TCP/IP, DNS, and HTTP.
Threat Researcher
Sophos Technologies Private limited
Ahmedabad
01.2019 - 04.2022
- Executed static and dynamic malware analysis, establishing custom lab environments.
- Conducted reverse engineering and detailed reporting on malicious code investigations.
- Managed critical incident response while adhering to structured escalation procedures.
- Developed YARA and OpenIOC signatures for efficient malware detection.
- Performed network forensics utilizing tools like Wireshark, Fiddler, and Process Monitor.
- Applied extensive knowledge of PE file architecture and X86 assembly in debugging tasks.
- Utilized OllyDB and IDA Pro for advanced debugging and analysis.
Education
M.Tech. - ECE
LNM Institute of Information Technology
Jaipur01-2020
B.Tech. - ECE
Jodhpur Institute of Engineering Technology
Jodhpur01-2015
Senior Secondary -
Saint Patrick's Vidya Bhawan
Jodhpur01-2011
Skills
Malware analysis
- PE and non-PE samples static and dynamic analysis
- Signature writing
Threat intelligence
- MITRE ATT&CK mapping
- Sigma rules
- Osint, Kibana, ElasticSearch, and Splunk
Websites
Certification
- ISCP - Cryptography, pen-testing, Website testing, System Testing , Burp-suite, kali-linux as a part of Information security certified professional Certification from “Kratikal: Secure for sure.
Thesis
- Vision-based hand gesture recognition for human-computer interaction, (2020 - M.Tech)
- GSM-based versatile robotic vehicle (2015 - B.Tech)
Internships
- BSNL-AICTE EETP, Jodhpur: Electronics and communication (April 2013 – Jan 2015)
- ONGC, Mumbai: Networking (June 2014 - July 2014)
- Mindfield Technologies, Jodhpur: Embedded systems (Sept 2013 – Jan 2014)
Timeline
Microsoft Defender: BIT Research Project
LTI Mindtree
09.2022 - 08.2023
Cyborg Threat Detection and Updation
Loginsoft Pvt. Ltd
05.2022 - 06.2022
Threat Researcher
Sophos Technologies Private limited
01.2019 - 04.2022
M.Tech. - ECE
LNM Institute of Information Technology
B.Tech. - ECE
Jodhpur Institute of Engineering Technology
Senior Secondary -
Saint Patrick's Vidya Bhawan