Helping SaaS startups secure their web apps & APIs from real-world threats | Ethical Hacker | Bug Bounty Hunter | Web Pentesting Specialist
I’m a freelance penetration tester and security researcher with a strong focus on securing SaaS-based web applications. With hands-on experience in ethical hacking, bug bounty programs (HackerOne), and real-world vulnerability exploitation, I help early-stage startups and growing tech companies identify, patch, and prevent high-impact security vulnerabilities before attackers do.
My core expertise includes:
Web application pentesting (OWASP Top 10, business logic flaws, IDORs, SSRF, etc.)
API security testing (broken object-level authorization, insecure design, etc.)
Recon automation and custom payload development
I've been featured in private programs that reward between $200–$700 for medium to critical vulnerabilities, and I bring the same level of diligence and precision to every freelance engagement. I don't just run scans and submit generic reports I simulate real-world attacks with documented PoCs and help you fix the issues with actionable remediation guidance.
Whether you’ve never done a security audit or want a fresh set of eyes on your code and infra, I can help you:
Scope the test based on your risk profile
Execute a custom pentest based on your tech stack
Provide a professional report (executive summary + technical details + remediation)
My approach is collaborative, transparent, and tailored to fast-moving SaaS environments. I’ve worked with teams that value speed, clarity, and measurable security ROI. You’ll receive NDAs, clear timelines, and fixed pricing upfront no surprises, no fluff.
If you're a startup founder, CTO, or engineering lead looking to secure your product and protect your users, let’s connect.
👨💻 Tools: Burp Suite, Nuclei, Amass, Subfinder, Metasploit, custom Python scripts
🔒 Let's turn your security blind spots into competitive advantages.
Work Terms
📅 Availability : Monday to Saturday | 10:00 AM – 8:00 PM IST
💬 Communication : Email, Slack, Zoom, Telegram flexible based on your preference
💰 Payment Terms :
50% upfront and 50% on delivery for fixed-scope projects
Hourly contracts available for smaller assessments or advisory work
Payments via Wise, banktransfer, cryptotransfer
📄 NDA: I offer a standard mutual NDA before project kick-off to protect both parties
📈 Deliverables:
Detailed technical report
Video PoCs (if required)
🧠 Value-Add: Free retesting included within 15 days post-fix window