RAVIKUMAR R. PAGHDAL
Head - Professional services,
Net-Square Solutions Pvt. Ltd.
1 Sanjivbaug, Paldi, Ahmedabad 380007, India
Tel: +91 99988 44523
ravi @ net-square.com
https://net-square.com
Qualifications | Master of Computer Application, Uka Tarsadia University, Bardoli, India (2014) Bachelor of Computer Application, Veer Narmad South Gujarat University, Surat, India (2011) |
Professional Interests | Web Application Security Research, Security Penetration Testing, Security Code Review, Mobile Application Penetration Testing, Network Vulnerability assessment & Penetration Testing, Red Teaming, Build Testing Methodology, Open Web Application Security Project (OWASP), Application Security Verification Standard (ASVS), Mobile Application Security Verification Standard (MASVS), Common Weakness Enumeration (CWE) |
Computer Skills | Platforms : Linux, Mac OS, Windows, DOS Languages : C/C++, Java, Visual Basic, C#, HTML, XML, Scheme Other skills : DBA |
Experience | |
08/22-present |
Head of Professional Services, Net-Square Solutions., Ahmedabad Responsible for the P&L of Professional Services group. work closely alongside the BD and HR team to run Security Services business and innovate new products and services. https://net-square.com |
04/18-08/22 |
Senior Manager - Professional Services, Net-Square Solutions., Ahmedabad As a Senior Manager at Net-Square Solutions Pvt Ltd, my responsibilities include managing the team of managers and Team leads. Creating and Managing new initiative drive and R&D group which will help to the organisation. Responsible for auditing and architecture review of critical banking system. Provide support to the management team and build a process and policy. https://net-square.com |
02/17-04/18 |
Team Lead - Professional Services, Net-Square Solutions., Ahmedabad As a Lead Information Security Analyst at Net-Square Solutions Pvt Ltd, my responsibilities include Managing the team of Security Analyst. Creating and Managing the Testing Processes Developing and Updating Methodologies for VAPT, Android Application PT and iOS Application PT, End-to-End delivery Client end testing, and managing the deployed resources at National and International client sides Contributing and guiding the Research and Development process. https://net-square.com |
05/14-03/17 |
Security Analyst, Net-Square Solutions., Ahmedabad Responsible for conducting Web and Network based vulnerability assessment and penetration testing, code review, developing information security tools, information security research and conducting vulnerability assessment of live applications such as internet banking systems, Government portal, event management portals and many critical business applications based on different technologies like JSP, PHP, .Net, Android, iOS and Thick client. |
01/14-05/14 |
Internship and Research, Net-Square Solutions., Ahmedabad Responsible for reserach on diffrent web application security assessment tools and techniques,Responsibilities included complition of M.C.A. project titled "WEB APPLICATION VULNERABILITY ASSESSMENT". |
06/13-07/13 |
Internship and Training, TechDefence Pvt Ltd, Ahmedabad Responsible for training on web application security vulnerability and observation techniques,learning how to hack & how to secure.http://techdefence.com |
05/11-08/11 |
Software Developer, Shree Miles Infotech., Surat Responsible for developing ERP software using Visual Basic .NET |
Honours/Activities |
GOOGLE, Top 50 Researcher at Google Vulnerability Reward Program (VRP) & Application Security, 2015/16 https://bughunters.google.com/profile/b242bbac-c290-4796-ba83-d5fa3eb2936e/awards [ Best rank was 32] MICROSOFT, Security Researcher Acknowledgments for Microsoft Online Services,July - October, 2013 http://technet.microsoft.com/en-us/security/cc308575#0713, http://technet.microsoft.com/en-us/security/cc308575#1013 ORACLE, Security Acknowledgement On-Line Presence Security Contributors, October 2013 http://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/1865183.xml APPLE, Reported potential security issues in Apple's web servers, August 2013 https://support.apple.com/en-in/HT207627 ADOBE, Responsibly disclosing a security vulnerability in an Adobe online service or website, August 2014 http://helpx.adobe.com/security/acknowledgements.html AT&T, Reporting security issues with AT&T's internet-facing online environment, October 2013 https://bugbounty.att.com/hof.php NOKIA, BLACKBERRY, BARRACUDA, CARD, OLARK, ICONFINDER, ENGINEYARD, TELEKOM, ACTIVECAMPAIGN, CHANGETIP, HELPSCOUT, BITCASA, CISCO, INTEL, STACK-OVERFLOW, IBM, LINUX FOUNDATION, AVAST, ABOUT.ME, CANONICAL, AVAST, LITHIUM, BRIGHTSTARR, VODAFONE(UK), GO.CO, GHANAWEB |
Training Engagements |
HITB DUBAI 2018 : "Mobile-Sec Exploitation Breakout (HITBSECCONF2018 DUBAI)" Adobe Internal: "Inroduction to Burp Suite (Noida INDIA 2015)" |
Articles | Pentester's Mindset! eXtensible Markup Language Attacks |
References | Available upon request. |