01 — About
Bridging the gap between offence & defence
I am a passionate Penetration Tester and Ethical Hacker dedicated to securing the digital frontier. With a strong foundation in network security, penetration testing, and secure coding, I build robust systems that stand up to modern threats.
My approach combines offensive security knowledge with defensive strategies — treating every project as a critical mission ensuring integrity, availability, and confidentiality.
Currently open to opportunities in Red Teaming, Vulnerability Assessment, and SOC Analysis.
Shourya Kakkar
Available for Work
Bennett University
B.Tech CSE (Cyber Security)
Aug 2023 — May 2027
3+
Focus Areas
15+
Tools
Open
Status
02 — Skills
Technical Arsenal
Tools & Platforms
- Burp Suite Pro
- Nmap
- Nessus
- Metasploit
- BloodHound
- Sliver C2
- Wireshark
Offensive Security
- VAPT
- WAPT
- API Security
- Active Directory
- LLM Security
- C2 Operations
AppSec & Docs
- Audit Reporting
- CVE Mapping
- Remediation Guidance
- CERT-In Compliance
- MITRE ATT&CK
Programming
- Python
- Bash/Shell
- JavaScript/TypeScript
- SQL
03 — Projects
Featured Projects
All WorkPromptArmor
AI Security Reverse Proxy & Analytics Platform
Architected multi-provider LLM security reverse proxy intercepting traffic across 4 AI providers with a 4-layer detection pipeline neutralizing jailbreaks and prompt injection attacks.
PhishGuard
ML-Based Phishing Email & URL Detection Tool
A machine learning-powered solution designed to safeguard users from phishing attacks by detecting malicious emails and URLs.
AD Pentest Lab
Active Directory Penetration Testing Lab
Simulated enterprise AD attack chain via Kerberoasting, mapped 1,747 AD relationships via BloodHound to identify Domain Admin attack paths, and documented Credential Guard defensive controls.
C2 Lab
Red Team Command & Control Simulation
Deployed Sliver C2, generated obfuscated Windows beacons, established persistent HTTP C2 sessions, and mapped MITRE ATT&CK TTPs while documenting EDR detection vectors.
ChainStrike
Automated Offensive Recon & Reporting Tool
Built a Python CLI tool chaining Nmap, Gobuster, and Nikto. Automatically parses outputs and generates HTML pentest reports with CVE mappings and MITRE ATT&CK TTP tags.
04 — Experience
Professional Journey
Security Analyst Intern
Cryptus Cyber Security Pvt. Ltd.
Conducted WAPT and API pentesting, identifying 20+ critical vulnerabilities (SQLi, XSS, IDOR/BOLA). Executed network assessments and authored CERT-In compliance-ready pentest reports.
Cyber Security Intern
ShadowFox
Assisted in vulnerability assessments, network reconnaissance & penetration testing of web applications using Nmap, Nikto, Wireshark and OWASP Top 10.
CTF Player
TryHackMe
Competed in Capture The Flag competitions, gaining hands-on experience in ethical hacking and penetration testing.
05 — Contact
Let's work
together.
Available for internships, freelance & full-time positions