Shourya
Kakkar

_

Scroll

Bridging the gap between offence & defence

I am a passionate Penetration Tester and Ethical Hacker dedicated to securing the digital frontier. With a strong foundation in network security, penetration testing, and secure coding, I build robust systems that stand up to modern threats.

My approach combines offensive security knowledge with defensive strategies — treating every project as a critical mission ensuring integrity, availability, and confidentiality.

Currently open to opportunities in Red Teaming, Vulnerability Assessment, and SOC Analysis.

SK

Shourya Kakkar

Available for Work

LocationDelhi, India
SpecialisationCyber Security
FocusAppSec · NetSec · Offensive
Education

Bennett University

B.Tech CSE (Cyber Security)

Aug 2023 — May 2027

3+

Focus Areas

15+

Tools

Open

Status

Technical Arsenal

01

Tools & Platforms

  • Burp Suite Pro
  • Nmap
  • Nessus
  • Metasploit
  • BloodHound
  • Sliver C2
  • Wireshark
02

Offensive Security

  • VAPT
  • WAPT
  • API Security
  • Active Directory
  • LLM Security
  • C2 Operations
03

AppSec & Docs

  • Audit Reporting
  • CVE Mapping
  • Remediation Guidance
  • CERT-In Compliance
  • MITRE ATT&CK
04

Programming

  • Python
  • Bash/Shell
  • JavaScript/TypeScript
  • SQL
bash — shourya@system:~
$

Featured Projects

All Work
01

PromptArmor

AI Security Reverse Proxy & Analytics Platform

Architected multi-provider LLM security reverse proxy intercepting traffic across 4 AI providers with a 4-layer detection pipeline neutralizing jailbreaks and prompt injection attacks.

PythonFastAPIDistilBERTPostgreSQLDockerStreamlit
02

PhishGuard

ML-Based Phishing Email & URL Detection Tool

A machine learning-powered solution designed to safeguard users from phishing attacks by detecting malicious emails and URLs.

PythonScikit-LearnTF-IDFPandasNumPyReact.jsNode.js
03

AD Pentest Lab

Active Directory Penetration Testing Lab

Simulated enterprise AD attack chain via Kerberoasting, mapped 1,747 AD relationships via BloodHound to identify Domain Admin attack paths, and documented Credential Guard defensive controls.

Windows Server 2022RubeusBloodHoundMimikatzKali Linux
04

C2 Lab

Red Team Command & Control Simulation

Deployed Sliver C2, generated obfuscated Windows beacons, established persistent HTTP C2 sessions, and mapped MITRE ATT&CK TTPs while documenting EDR detection vectors.

Sliver C2Kali LinuxWindows 11Python
05

ChainStrike

Automated Offensive Recon & Reporting Tool

Built a Python CLI tool chaining Nmap, Gobuster, and Nikto. Automatically parses outputs and generates HTML pentest reports with CVE mappings and MITRE ATT&CK TTP tags.

PythonNmapGobusterNiktoMITRE ATT&CK
06

WebSecScan

Web Application & Server Security Assessment Tool

Automated scanner that identifies common web vulnerabilities (XSS, SQLi) and generates professional PDF reports.

PythonFlaskNmapNiktoOWASP Top 10

Professional Journey

Feb 2026 — Present

Security Analyst Intern

Cryptus Cyber Security Pvt. Ltd.

Conducted WAPT and API pentesting, identifying 20+ critical vulnerabilities (SQLi, XSS, IDOR/BOLA). Executed network assessments and authored CERT-In compliance-ready pentest reports.

Aug 2025 — Sep 2025

Cyber Security Intern

ShadowFox

Assisted in vulnerability assessments, network reconnaissance & penetration testing of web applications using Nmap, Nikto, Wireshark and OWASP Top 10.

2025 — Present

CTF Player

TryHackMe

Competed in Capture The Flag competitions, gaining hands-on experience in ethical hacking and penetration testing.

Let's work
together.

Available for internships, freelance & full-time positions