SANSKAR

Operating as

View Builds Ping Me

About

Application Security Engineer focused on web application penetration testing, API security testing, OWASP Top 10, authentication and authorization testing, business logic flaws, threat modeling, and mobile pentest. At TCS, I have tested 15+ enterprise applications, documented 60+ vulnerabilities, and helped reduce remediation cycle time by 35% through structured reporting and re-testing.

Application Security Engineer

  • Degree: B.Tech (CSE)
  • Email: sanskarkashyap.professional@gmail.com

I work at the intersection of application security and practical engineering: finding exploitable weaknesses, explaining impact clearly, and helping teams ship fixes that hold up after re-testing.

Skills

Application Security

  • Web Application Penetration Testing
  • OWASP Top 10
  • API Security Testing
  • Authentication & Authorization Testing
  • Business Logic Flaws
  • Threat Modeling
  • Mobile Pentest

Security Engineering

  • Privilege Escalation
  • Attack Surface Mapping
  • Vulnerability Management

Cloud Security

  • AWS IAM
  • S3 Misconfiguration Testing
  • EC2 Hardening
  • Least Privilege Enforcement

Tools & Programming

  • Burp Suite, Nmap, Metasploit, Wireshark
  • MobSF, Docker
  • Python, C/C++, Bash, JavaScript

Resume

Summary

Sanskar Kashyap

Application Security Engineer skilled in web application penetration testing, API security testing, threat modeling, vulnerability management, cloud security, and secure remediation validation.

  • B.S. City, Jharkhand, India
  • +917004747318
  • sanskarkashyap.professional@gmail.com

Education

B.Tech (CSE)

2020 - 2024

Kalinga Institute of Industrial Technology, Bhubaneswar

CGPA: 8.36

Senior Secondary (12th)

2019 - 2020

Chinmaya Vidyalaya (CBSE), B.S. City, Jharkhand

80.4%

Matriculation (10th)

2017 - 2018

Delhi Public School (CBSE), B.S. City, Jharkhand

90%

Professional Experience

Cyber Security Analyst

Aug 2024 - Present

Tata Consultancy Services (TCS)

  • Conducted penetration testing across 15+ enterprise web applications and internal environments.
  • Identified, exploited, and documented 60+ vulnerabilities including XSS, SQLi, IDOR, SSRF, and authentication bypass.
  • Reduced average vulnerability remediation cycle time by 35% through structured reporting.
  • Performed privilege escalation and lateral movement simulations during internal network assessments.
  • Discovered and mitigated a high-severity production vulnerability preventing unauthorized data exposure.
  • Partnered with engineering teams to implement secure coding practices aligned with OWASP standards.
  • Validated security fixes via re-testing, ensuring zero regression vulnerabilities post-remediation.

Projects

ReconBoss - Automated Attack Surface Mapping Framework

GitHub

  • Architected a 1,200+ line Python CLI reconnaissance framework integrating 10+ OSINT tools.
  • Automated subdomain enumeration, port scanning, and technology fingerprinting workflows.
  • Reduced manual reconnaissance effort by 80%, saving approximately 1 hour per assessment.
  • Improved attack surface discovery coverage by consolidating fragmented tooling.
  • Designed modular architecture for scalable integration into penetration testing workflows.

Himalayan Blossom - E-commerce Platform

Live Demo | GitHub

  • Developed a fully functional e-commerce web application combining HTML/CSS/JS with a secure Node.js backend.
  • Integrated Firebase Authentication for streamlined user login, registration, and secure session management.
  • Implemented Razorpay payment gateway to provide a seamless and secure checkout experience for users.
  • Designed an interactive, accessible, and responsive frontend UI, ensuring a premium browsing experience.

Recent Builds

Two live products I recently designed and shipped with a strong focus on clean UX, responsive polish, and smooth interaction details.

AI Translation App

Anuwad

Anuwad is a polished translation-focused web app built for fast, clear language conversion. The interface keeps the workflow simple while still feeling modern, responsive, and product-ready.

Open Live Site
E-commerce Experience

Himalayan Blossom

Himalayan Blossom is a refined e-commerce platform with a calm shopping flow and premium product presentation. It combines responsive storefront design with authentication and checkout-ready structure.

Open Live Site

Achievements

  • 2025: World Wide CTF 2025 - Global Rank 161
  • 2024: PANTATHON 2024 (NCIIPC India, NTRO) - Team Rank 16 out of 8,000+ participants
  • Digital Defenders CTF: Rank 61, hosted by IISc and Cisco

Community & Speaking Engagements

NULL Speaker

Bengaluru, Bhubaneswar

  • Decoding APT Strategies and TTPs Methodologies
  • Mitigating Remote Access Security Risks

Certifications

  • AWS Certified Cloud Practitioner
  • Website Hacking / Penetration Testing
  • CCNA: Introduction to Networks
  • Cybersecurity Essentials
  • DSA using C and C++

Contact

Location:

B.S. City, Jharkhand, India

Call:

+917004747318

Transmitting
Signal received. Talk soon.