I am a security researcher from New Delhi, India.

My blog is centered primarily around network and application security. My writing has featured in publications such as The Hindu, The Quint, The Wire, 2600 Magazine, and elsewhere, while some of my work has been documented in publications such as the New York Times and Caravan Magazine.

• [ 2020-07-15 ] Command injection vulnerability in V-SOL home networking devices
• [ 2019-08-24 ] Attacking a weak 3D Secure implementation
• [ 2018-05-03 ] Extracting personal phone numbers linked to Aadhaar
• [ 2018-02-23 ] Disclosure of account balance and recent transactions on PayPal
• [ 2017-06-29 ] Fuzzing for obfuscated phone numbers