Namaste, I'm

KABIR

Security Engineer

Specializing in web application security, penetration testing, and building secure development practices. Founder of TheCyberHUB community.

hello friend

Explore Community Contact Me
01
10
00
11
01
10

Scroll to explore

Get To Know More

whoami

Working on Opensource projects and community building, I create spaces where people can contribute and begin their journey in Opensource and Cybersecurity. The community's primary goal is to help newcomers get started in these fields while supporting experienced practitioners in deepening their involvement with Opensource communities.

My mission for the coming months is to scale our contributions to Opensource initiatives and develop resources that make cybersecurity knowledge more accessible to everyone interested in joining this critical field.

3+ Years Experience
150k+ Community Members
10k+ Monthly Visitors

Experience

3+ years in Cyber Security with expertise in web application security, penetration testing, and security automation.

Community

Founder of TheCyberHUB, building a vibrant community that helps newcomers and experts share knowledge and resources.

Mission

Dedicated to making cybersecurity knowledge accessible and fostering a culture of secure development practices.

View My Experience
Explore My

history

LeadSquared

Security Engineer Bengaluru | Sept 2023 – Present
  • Led module-level security testing across various projects, ensuring new features met security standards before approval.
  • Managed and optimized cloud security tools, including Sekd, Falkon, and Akamai WAF, to monitor, detect, and block malicious traffic.
  • Configured and modified security headers, enforcing best practices to enhance application security.
  • Proactively identified and mitigated potential credential and data leaks within cloud environments.
  • Automated security workflows, including DAST and SAST scans, to streamline vulnerability detection and remediation.
  • Discovered and mitigated multiple critical vulnerabilities, including RCE, SQLi, and complete admin panel takeovers, ensuring system integrity.
  • Collaborated with development teams to resolve customer-reported security issues and strengthen application defenses.
  • Performed penetration testing and secure code reviews, enhancing security posture across internal and external applications.
  • Worked closely with management to communicate risks and implement mitigation strategies for identified vulnerabilities.
Technologies:
Akamai WAF DAST SAST Cloud Security Penetration Testing

TheCyberHUB

Creator | Community Mentor 2020 - Present
  • Conducted SAST scans with Snyk & DAST scans with BurpSuite Enterprise, performed secure coding, code reviews, and penetration testing.
  • Implemented CI/CD pipelines for security automation, streamlining setup processes.
  • Played an active role in a responsible disclosure program, contributing to a more secure digital environment.
  • Engaged in exploit development and conducted CVE research to proactively identify and remediate vulnerabilities.
  • Managed and nurtured a vibrant cybersecurity community, guiding newcomers in Opensource and Cybersecurity.
  • Developed open-source projects for the community, fostering collaborative learning and contribution.
  • Developed a feature-rich MERN stack website with blogs, feeds, and cybersecurity resources.
  • Collaborated with peers to elevate cybersecurity awareness and facilitate knowledge sharing.
  • Organized and hosted CTF events, and constructed practical CTF vulnerable machines.
  • Achieved consistent monthly influx of 10k+ unique visitors to the community website.
Technologies:
MERN Stack BurpSuite Snyk CI/CD CTF
Explore My Skills
Explore My

Technical Skills

Application Security

Web Application Penetration Testing
API Security Assessment
OWASP Top 10 Vulnerabilities
Authentication & Authorization Testing
Secure Coding Practices
Expert

Infrastructure Security

Network Penetration Testing
Cloud Security (AWS, GCP, Azure)
Container Security (Docker, K8s)
Network Traffic Analysis
Vulnerability Assessment
Intermediate

Security Tools

BurpSuite (Enterprise & Professional)
OWASP ZAP
Snyk & SAST Tools
Metasploit Framework
Wireshark & Packet Analysis
Expert

DevSecOps

SAST & DAST Implementation
CI/CD Security Pipelines
GitOps & GitHub Actions
Security Automation
Infrastructure as Code (IaC) Security
Expert

Programming

Python (Security Automation)
JavaScript & Node.js
Go
Bash Scripting
Java
Expert

Web Development

MERN Stack (MongoDB, Express, React, Node)
React & Modern JavaScript
Python Web (FastAPI, Flask)
RESTful API Development
MongoDB & SQL Databases
Expert
Browse My Recent

Projects

Explore my portfolio of security-focused projects, from community platforms to specialized security tools and vulnerable environments for hands-on learning.

TheCyberHUB
Featured Project

TheCyberHUB

A comprehensive cybersecurity community platform enhancing user engagement through feed posts, blogs, and user profiles. Pioneered CTF events to foster hands-on learning and managed a repository of cybersecurity resources. Conducted penetration testing, effectively mitigated vulnerabilities, and championed security via DevSecOps methodologies.

ReactJS NodeJS ExpressJS MongoDB DevSecOps
150k+ Users
10k+ Monthly Visitors
VulneraScan

VulneraScan

A cutting-edge web-based vulnerability scanner designed to identify and analyze potential security vulnerabilities within web applications. Its advanced scanning techniques ensure comprehensive coverage across various attack vectors.

Python Flask MongoDB NextJS
Coming Soon
VulneraSite

VulneraSite

A completely vulnerable Flask application built for testing and enhancing security skills. This project provides a hands-on platform for security enthusiasts to practice identifying and exploiting vulnerabilities in a controlled setting.

Python Flask SQL DevSecOps
Coming Soon
Reconage

Reconage

A command-line interface (CLI) utility designed for reconnaissance and vulnerability scanning.

A command-line interface (CLI) utility designed for reconnaissance and vulnerability scanning, delivering results in an organized and sequential format. Features include port scanning, service enumeration, and automated reporting.

Bash Python OpenSource Docker
Coming Soon
View Project
Portscout

Portscout

A Python-based Fast Port Scanner with flexible output formats.

Delivered a Python-based Fast Port Scanner with flexible output formats, displaying open ports, IP:port pairs, and host:IP details. Enabled users to save results to files, optimizing analysis and facilitating cybersecurity assessments. Features multi-threading for high-speed scanning of large networks.

Python Docker CLI
Live
View Project
CVE Lab

CVE-2022-3552 Lab

A dedicated cybersecurity lab for Box Billing vulnerabilities.

Created a dedicated cybersecurity lab to analyze and exploit vulnerabilities in Box Billing versions up to 4.22.1.5, enhancing security awareness and mitigation capabilities. Includes detailed documentation, proof-of-concept exploits, and remediation guidelines for security researchers and developers.

VulnerableLab Exploit Python Docker
Live
View Project
See More on GitHub
Explore My

Achievements

TheCyberHUB Community

150k+ Community Members

Successfully built and nurtured a thriving cybersecurity community, helping thousands of newcomers start their journey in the field.

TryHackMe Ranking

Top 12% Global Ranking

Ranked 88,446 out of 1 million users on TryHackMe, demonstrating practical cybersecurity skills and problem-solving abilities.

GitHub Recognition

150+ Repository Stars

Created valuable open-source security tools and resources recognized by the developer community with over 150 stars on GitHub.

Hacktoberfest Maintainer

2022 Open Source Event

Served as a project maintainer for Hacktoberfest, mentoring contributors and fostering participation in open-source security projects.

Additional Impact Metrics

10k+ Monthly Website Visitors
25+ Security Resources Created
12+ CTF Events Organized
5+ Vulnerability Research Reports
Get in Touch
Get in Touch

Contact Me

I'm always open to discussing new projects, opportunities in cybersecurity, or potential collaborations. Feel free to reach out through any of the channels below.

Email

kabir00x23@gmail.com

For project inquiries and general questions

Send Email

LinkedIn

linkedin.com/in/0xk4b1r

For professional networking and opportunities

Connect

GitHub

github.com/0xk4b1r

For collaboration on open-source projects

Follow

Interested in working together? Let's connect! I'm currently available for freelance projects and security consultations.