Srijan Adhikari

Perform penetration testing across web applications, APIs, and diverse enterprise environments to identify security vulnerabilities. Simulate real-world attack scenarios to evaluate system resilience and uncover exploitable security weaknesses. Analyze and validate vulnerabilities with proof-of-concept exploitation to confirm business impact. Prepare detailed technical reports with risk ratings, attack paths, and clear remediation recommendations. Collaborate with developers and engineering teams to support secure coding practices and strengthen SDLC. Research emerging vulnerabilities, attack techniques, and security trends to improve testing effectiveness.

Progressed from Offensive Security Intern → Associate Cybersecurity Engineer → Cybersecurity Engineer. Conducted 120+ penetration tests across Web applications, APIs, Mobile platforms, Networks, and Active Directory environments. Delivered detailed reports with PoCs and CVSS scoring. Conducted 5+ secure coding sessions for client developers, cutting security issues by 50%.

Provide freelance penetration testing services for web applications, APIs, and network infrastructures to identify exploitable security vulnerabilities. Perform end-to-end security assessments, including reconnaissance, vulnerability analysis, exploitation, and post-exploitation validation. Conduct manual and automated penetration testing using industry-standard tools and custom techniques to uncover critical security flaws. Simulate real-world attacker behavior (red team-style approach) to evaluate system resilience and business impact of vulnerabilities. Identify issues such as SQL injection, XSS, authentication bypass, IDOR, API security flaws, and misconfigurations. Deliver professional vulnerability assessment reports with technical evidence, severity ratings (CVSS-style), and clear remediation guidance.