▪ Designed & Developed new technologies to discover , detect and disrupt human-operated ransomware attacks.▪ Utilized existing technologies and machine learning combinations to eliminate living off the land attributions concerning the MITRE framework.▪ Devised Client-Side ML classifiers to uncover zero-day malware campaigns and targeted groups.▪ Developed botnet harvesters to collect the variety of latest botnet samples from its C&C servers.

• Specialized in botnet communication analysis and information extraction.• Worked closely with Living off the Land Attacks and Redteam Testing tools.• Conducted end-to-end research of several malspam campaigns and targeted attacks• Involved in Root cause analysis & Efficacy research to improve Symantec technology stack.• Research new attack vectors such as IOT Bots, ATM Malware, OSx Malware, Kernel Rootkits & Bootloader infectors.• Analyzed prevalent threats such as Ransomware, Botnet, Banking trojans, Exploit Kits, Miners & Shellcodes.• Developed automation such as Botnet Harvester, MACH-O Attribute Collector, Ransomware Payload Collector, Domain Generation & Black-lister & Emerging Threat Identifier, etc.

• Proficient with OllyDbg, IDA, WinDbg, and other malware analysis tools.• Hands-on dissecting malicious binary files and scripts.• Worked with Static & Generic Definition writing.• Worked with Mac Generic Definition writing.• Worked closely with Portable Executable(PE), APK, MACH-O, JavaScript, VBScript, Macro/VBA, PDF, ARM, PowerShell & SWF malwares.• Analyzed Exploit Kits, Shellcodes, and Performed Threat Categorization. • Familiar with AV Evasion, Anti-VM & Anti-debugging techniques.• Hands on Windows internals and x86/x64 Architecture.

Pen-testing & Red-Team• Conducted onsite and remote security assessments including network & application vulnerability assessments, penetration testing, web application security reviews for major clients across all verticals.• Accomplished security assessment projects for major banks, financial organization, petrochemical, telecom and manufacturing industries.• Identified vulnerabilities posing a high risk to the business and communicated them to the appropriate stakeholders for remediation, resulting in improved security posture and increased attack resiliency.• Identified critical vulnerabilities and developed proof-of-concept exploits that allowed the business to understand the risk, resulting in speedy remediation.Vulnerability & Exploit Research:• Worked closely with reverse engineering, exploit development & malicious code analysis.