Aaditya P. Email & Phone Number

Seattle, WA, US

Full-stack hacking, leading collaborative pentests, and spearheading automation projects to scale and enhance security measures that protect AWS and its customersConsistently delivering results, tackling complex and ambiguous challenges, and enabling metrics-driven, data-informed decisions. Actively mentoring junior engineers, contributing to the hiring.

Perfect Blue is a Capture The Flag (CTF) Team comprising of students and professionals mainly from US and other parts of the world. It is ranked on CTFTime as world’s best hacking team for the year 2020, 2021, and 2023.perfect blue has won the most challenging and prestigious hacking competitions (CTF) events across the world consistently such as.

• Self-motivated security professional since 2013
• Diverse skillset: Expertise ranging from Web to Reverse Engineering, capable of tackling any challenge.
• Awarded bug bounties from over 100 companies worldwide.
• Active in CTFs as a member of world ranked #1 teams since 2016 (previously with dcua, currently with perfect blue/Blue Water).
• Researching niche AppSec topics and advancing the field through innovative research.
• Developing tools for auditing blockchain security.

Austin, Texas, US

• Demonstrated offensive penetration testing competence and ownership in diverse areas for year long, large scale projects: Manufacturing Audit (2019-2020), Energy Audit (2020-2021), and Vehicle system Audit (2021-2022)..
• Ensured that Tesla's mission critical releases were as secure as possible by performing end-to-end security reviews on over 400+ tickets. Notable work on securing: BTC+DOGE payment release, SentryCam, Non-Tesla.
• Discovered and reported 0days in multiple third party vendors such as Akamai Zero Trust, ObserveIT, Avaya, etc.
• Performed successful Red Team engagements to challenge the security posture of numerous crown jewels and provided guidance for the remediation by going above and beyond for my role.
• Helped strengthen Tesla's defenses by collaborating with blue team to build robust signals during purple team activities.
• Proactively reconstructed 1-days/n-days through patch-diffing and led offensive testing efforts to perform company-wide scanning for critical emerging vulnerabilities such as log4j, spring4shell, etc. Always stayed on.

Austin, Texas, US

Red Team - Offensive Security, AppSec, Vulnerability Research (VR), and Incident Handling - Hacking all the things and keeping Tesla and its customers secure!

Santa Clara, California, US

• Worked alongside with App-ID team to develop manual signatures for Web/Mobile/Thick Client applications by fully understanding the network flow, identifying patterns, testing and deploying on a Palo Alto Networks.
• Developed 20+ signatures with applications using HTTP/2, a latest web protocol at that time and built an analyzer
• Instrumented malware analysis with full reverse engineering of most complex samples and emulated threat in an air-gapped environment to write signatures for detecting and blocking them. Collaborated with Unit42.
• Worked on an Internal project (also my Intern project) along with my mentor to automate and enhance signature generation productivity by 100% with minimal false-positives using Machine Learning algorithms.

Tempe, Arizona, US

Aaditya Purani was a Security Analyst at Bishop Fox, a security consulting firm providing services to the Fortune 500, global financial institutions, and high-tech startups. Aaditya's primary area of expertise are web application penetration testing, mobile application penetration testing, product security reviews, and source code review.