Initializing Security Portal...
Available for Engagements

KIRAN

KUMAR K
· IISc Bengaluru

Results-driven Cybersecurity Analyst specializing in VAPT, SOC operations, digital forensics and enterprise endpoint security. Responsible disclosure to NASA · Stanford University · Government portals. 500+ devices secured. Zero incidents unresolved.

📧 Get In Touch ⬡ GitHub ◈ LinkedIn
0
Devices Secured
0
CCTV Vulns Found
0
Policies Deployed
0
% Faster IR
// analyst.profile
🏛️
IISc – DIGITS
Indian Institute of Science, Bengaluru
📍
Bengaluru, Karnataka
India · IST (UTC+5:30)
📞
+91 8310937381
Direct contact
✉️
kirankumark.sec@gmail.com
Professional inquiries
Active · Junior Security Analyst
0+
Devices Onboarded
Microsoft Intune · MDE Integration
0
CCTV Vulnerabilities
Across 4 NVR systems · Full PoC
0+
Security Policies
Intune & Entra ID enforcement
0%
Faster IR Response
Python-automated NCCC workflows
What I Do

Security Services

Comprehensive cybersecurity expertise across offensive and defensive domains — from penetration testing to enterprise hardening.

🎯
VAPT & Penetration Testing
Full-scope vulnerability assessment and penetration testing for web apps, APIs, and network infrastructure. OWASP Top 10 methodology with comprehensive PoC reports.
Burp Suite ProMetasploit NmapSQLMapOWASP ZAP
🔭
SOC Operations & SIEM
24/7 security monitoring, threat hunting, and incident response. Managing 50+ MDE alerts and 35+ Azure agentless alerts daily with comprehensive forensic investigations.
Microsoft SentinelWazuh SplunkELK Stack
💻
Endpoint Security & MDM
Enterprise endpoint management, zero-trust implementation, and compliance enforcement. Onboarded 500+ devices with automated LAPS rotation and MDE integration.
Microsoft IntuneEntra ID CrowdStrikeSentinelOne
🔬
Vulnerability Management
Continuous vulnerability scanning and risk-prioritized remediation. Achieved 100% remediation compliance across all assessed IISc applications.
QualysRapid7 InsightVM Nessus ProOpenVAS
🧪
Application Security
SAST/DAST analysis, API security testing, code review, and secure SDLC integration. Identifying SQLi, XSS, IDOR, and API authentication bypass vulnerabilities.
Fortify SCACheckmarx SAST/DASTAPI Security
🔍
Digital Forensics & IR
Incident response, log analysis, IOC/IOA investigation, VM forensics and threat hunting. Python-automated NCCC compliance workflows reducing response time by 40%.
Log AnalysisIOC/IOA VM ForensicsNCCC
Career Path

Work Experience

Full-Time · Current
Junior Security Analyst
IISc – DIGITS/Information Security Office
Jun 2025 – Present
  • Onboarded 500+ endpoints to Microsoft Intune with Zero-Trust compliance policies, automated LAPS rotation, and full MDE integration — no device gains network access without meeting defined security baselines.
  • Executed comprehensive VAPT on 50+ IISc websites and API penetration testing (SQLi, XSS, IDOR, API authentication bypass); achieved 100% vulnerability remediation compliance.
  • Discovered 563 CCTV cameras across 4 NVR systems exposed with default credentials; delivered comprehensive PoC demonstrating full admin access; all systems subsequently secured.
  • Managed 50+ Microsoft Defender alerts and 35+ Azure agentless alerts daily; performed threat hunting, isolated compromised endpoints, led forensic investigations of multiple live cyberattacks.
  • Automated incident response workflows using Python to parse NCCC reports (IOCs, IOAs, honeypot logs), reducing response time by 40%.
  • Deployed Wazuh SIEM with agent-based setup for centralized log monitoring; evaluated PacketFence NAC for campus-wide rollout; executed ASR rule deployment and LAPS password rotation programs.
Internship
Information Security Intern
Indian Institute of Science (IISc), Bangalore
Mar 2025 – Jun 2025
  • Performed VAPT on 5+ IISc web applications and 1 API using OpenVAS and Burp Suite, identifying OWASP Top 10 vulnerabilities and API security flaws with comprehensive PoC documentation.
  • Delivered remediation reports prioritized by CVSS scores with step-by-step fix procedures; analyzed Apache/Nginx logs for anomaly detection and threat indicators.
Independent
Independent Bug Bounty Researcher
Self-Employed
Mar 2023 – Dec 2024
  • Responsibly disclosed critical vulnerabilities to NASA (Bulk Directory Listing), Stanford University (AWS S3 Misconfiguration), Hrylabour.gov.in (Reflected XSS), and Patanjaliayurved.net (High-severity XSS).
  • Demonstrated professional responsible disclosure practices — coordinating directly with security teams at world-class organizations to ensure timely and complete remediation.
Technical Arsenal

Skills & Tools

💻 Endpoint & MDM
Microsoft IntuneEntra ID LAPSASR Rules Windows DefenderCrowdStrikeSentinelOne
⚔️ Penetration Testing
Burp Suite ProMetasploit NmapSQLMap OWASP ZAPKali LinuxAPI Pen Testing
🔭 SOC & SIEM
Microsoft SentinelDefender MDE Wazuh SIEMRapid7 InsightIDR SplunkELK Stack
🔬 Vuln Management
QualysRapid7 InsightVM Nessus ProOpenVASAsimily
☁️ Cloud & Network
Azure ADDefender for Cloud Zero Trust/ZTNAPacketFence NAC WiresharkAWS Security
🧪 AppSec
Fortify SCACheckmarx SAST/DASTOWASP Top 10API Security
🖥️ Server Security
Linux HardeningSELinux MDAPTSecure OS ConfigMSSQL Security
🤖 Scripting & Forensics
PythonBashSQL Log AnalysisIOC/IOAVM Forensics
Featured Work

Key Projects

Real-world security implementations and discoveries from enterprise environments and independent research.

01
🛡️
Zero-Trust Endpoint Security — Microsoft Intune
Architected and deployed a Zero-Trust endpoint security framework onboarding 500+ devices to Microsoft Intune with enforced compliance policies, automated LAPS password rotation, and full MDE integration.
Microsoft IntuneZero Trust MDELAPSEntra ID
View Details →
02
☁️
Cloud Server Security Hardening — MDAPT & SELinux
Implemented Microsoft Defender for Cloud (MDAPT) across all Linux servers for continuous security monitoring and threat detection. Enforced SELinux mandatory access control policies. Disabled xp_cmdshell on MSSQL servers.
MDAPTSELinux MSSQLLinuxAzure
View Details →
03
🔐
Phishing-Resistant MFA Implementation
Designed and deployed a phishing-resistant MFA solution with advanced platform hardening techniques, significantly reducing credential-based attack vectors across enterprise identity systems with Entra ID conditional access.
MFAIdentity Security Entra IDZero Trust
View Details →
04
📹
CCTV Vulnerability Discovery — IISc Campus
Discovered 563 CCTV cameras across 4 NVR systems exposed with default credentials. Demonstrated full administrative access via comprehensive PoC report detailing the full vulnerability chain. Remediation included credential rotation, access controls, network segmentation.
IoT SecurityCCTV/NVR VAPTPoC
View Details →
05
🤖
IR Automation — Python NCCC Report Parser
Automated incident response workflows using Python to parse NCCC reports including IOCs, IOAs, and honeypot logs. Achieved a 40% reduction in mean response time aligned with NCCC directives ensuring full compliance.
PythonNCCC IOC/IOAAutomationIR
View Details →
06
🔍
SOC Alert Management & Live Threat Hunting
Managed 50+ daily Microsoft Defender for Endpoint alerts and 35+ Azure agentless alerts. Led active threat hunting campaigns, isolated compromised endpoints in real-time, and conducted forensic investigations.
SOCThreat Hunting EDRForensicsMDE
View Details →
07
Live on GitHub
🛡️
Security Hardening Guides
A comprehensive interactive hub covering security hardening for Linux servers, APIs, Node.js, React, Flutter, and WordPress. Each guide provides step-by-step hardening checklists, CIS benchmark alignment, and real-world configuration examples.
LinuxAPI Security Node.jsCIS Benchmarks
🚀 Launch Project →
08
Live on GitHub
🐧
Metasploitable2 Penetration Testing Lab
Built a hands-on penetration testing lab using Metasploitable2 to simulate real-world vulnerable environments. Performed enumeration, exploitation, privilege escalation, and post-exploitation using tools like Metasploit, Nmap, and manual techniques. Documented full attack paths and remediation strategies.
Metasploitable2 Metasploit Nmap Privilege Escalation VAPT Lab
🚀 Launch Project →
09
Live on GitHub
🌐
CyberShield — Domain Attack Awareness
An interactive domain security awareness platform covering real-world attack vectors — typosquatting, subdomain takeover, DNS hijacking, phishing lookalikes, and more with visual threat simulations.
Domain SecurityDNS Attacks PhishingThreat Intel
🚀 Launch Project →
Security Hardening

Infrastructure Hardening

Systematic security hardening across endpoints, servers, cloud infrastructure, and network layers using industry best practices and zero-trust principles.

Security hardening reduces the attack surface by eliminating unnecessary services, enforcing strict access controls, and applying configuration best practices across every layer of the infrastructure stack.

At IISc, implemented a comprehensive hardening program covering 500+ endpoints, all Linux servers, MSSQL databases, and cloud infrastructure — achieving measurable risk reduction across the institution.

Every hardening engagement follows a structured baseline assessment, remediation roadmap, implementation, and validation cycle — with documentation aligned to NCCC and institutional compliance requirements.

CIS Benchmark Alignment
All systems assessed and hardened against CIS Level 1 and Level 2 benchmarks for Windows, Linux, and cloud platforms.
🔒
Zero-Trust Architecture
No implicit trust — every access request verified, every device compliant before network access is granted via Microsoft Intune and Entra ID.
📋
NCCC Compliance
All hardening activities aligned with NCCC directives and documented for institutional compliance reporting.
🖥️
Endpoint Security
Windows & Mac MDM
Microsoft Intune enrollment
Compliance policy enforcement
LAPS automated rotation
MDE full integration
ASR rule deployment
🐧
Linux Server
Server & OS hardening
SELinux mandatory access control
MDAPT deployment
SSH key-only authentication
Firewall rule enforcement
Audit logging enabled
🗄️
Database Security
MSSQL & data protection
xp_cmdshell disabled
Least privilege accounts
Encrypted connections only
Audit trail enabled
Network isolation
☁️
Cloud Hardening
Azure & cloud security
Defender for Cloud MWAP
CSPM posture management
Conditional access policies
PIM/JIT access
Zero-trust network access
Security Awareness

Threat Intelligence

Empowering organizations to understand and defend against modern cyber threats through education and practical awareness programs.

🎣
Phishing & Social Engineering
Understanding and defending against phishing, spear-phishing, vishing, and social engineering attacks targeting employees.
Verify sender identity before clicking links
Report suspicious emails to security team immediately
Use phishing-resistant MFA everywhere
🔑
Credential & Identity Security
Protecting user credentials, implementing MFA, and enforcing strong identity hygiene across the enterprise.
Use unique strong passwords with a password manager
Enable MFA on all critical accounts
Never share credentials over any channel
💾
Data Protection & Privacy
Ensuring sensitive data is handled, stored, and transmitted securely according to data classification policies.
Classify data before storing or sharing
Encrypt sensitive data at rest and in transit
Follow data retention and disposal policies
📱
Device & Endpoint Safety
Maintaining device security hygiene, recognizing unsafe software, and understanding BYOD risks in enterprise environments.
Keep devices patched and updated
Lock your screen when stepping away
Report lost or stolen devices immediately
🌐
Safe Internet & Network Use
Safe browsing practices, avoiding public Wi-Fi risks, and understanding network-based threats like man-in-the-middle attacks.
Avoid public Wi-Fi for sensitive work
Use VPN when working remotely
Verify HTTPS before entering credentials
⚠️
Incident Reporting
Teaching employees to recognize security incidents and the importance of timely reporting to the SOC team.
Report any suspicious activity immediately
Document what you saw, when, and how
No incident is too small to report
Responsible Disclosure

Bug Bounty & Disclosures

Identifying and responsibly disclosing critical vulnerabilities to world-class organizations, contributing to global cybersecurity.

🚀
NASA
Bulk Directory Listing — Sensitive File Exposure
Critical
🏛️
Stanford University
AWS S3 Bucket Misconfiguration — Data Exposure
Critical
🏛️
Hrylabour.gov.in
Reflected XSS — Government Labour Portal
High
🌿
Patanjaliayurved.net
High-Severity Cross-Site Scripting (XSS)
High
Credentials

Certifications & Training

🛡️
Ethical Hacking (CEH-style)
Penetration Testing Track
☁️
Microsoft Azure Security
Microsoft · Cloud Security
🔒
SOC Operations
Security Operations Center Training
🐛
Bugcrowd Bug Bounty
Bugcrowd Platform · Active Researcher
logo
Kinetik Security Solutions
Future Vision · Cybersecurity Enterprise
Concept Stage
Future Vision

Building the Future
of Cybersecurity

A concept for a next-generation cybersecurity firm focused on AI-powered threat detection, offensive security research, and enterprise-grade protection.

🤖
AI-Powered Detection
Behavioral anomaly detection
ML-driven threat hunting
Automated response playbooks
⚔️
Offensive Research
Red team operations
Zero-day research
Advanced persistent threat sims
🏢
Enterprise Platform
Unified security dashboard
Compliance automation
Real-time risk scoring
🌐
Threat Intelligence
Dark web monitoring
IOC feeds & enrichment
Geopolitical threat landscape
Ready to Collaborate?
Whether it's a VAPT engagement, security consulting, or building the future of cybersecurity together — let's connect.
🚀 Start a Conversation ◈ LinkedIn
Get In Touch

Let's Work Together

Have a security challenge? Need a VAPT engagement? Let's discuss how I can help protect your organization.

✉️
Email
kirankumark.sec@gmail.com
📞
Phone
+91 8310937381
🔗
LinkedIn
linkedin.com/in/kiran-kumar-k3
🐙
GitHub
github.com/KIRAN-KUMAR-K3
🐛
Bugcrowd
bugcrowd.com/KIRAN-KUMAR-K
// send a message