Gaurang Bhatnagar

Cyber Security Consultant

About Me

I’m currently working as a security consultant in one of the consultancy firm based in India.

Following are the key highlights about me:

  • Experienced in attacking and defending enterprise systems and networks.
  • Key focus of my research is to find advanced attacks and vulnerabilities in web, mobile and network services.
  • Usually spend my time by doing self research more into offensive security.
  • Highly engaged and active at assessing the security of various organizations and open source projects.

Blog Posts

A writeup of one of my pentest engagements where I was tasked to pentest a Biometric Attendance Device. The writeup shows how I was able to achieve root by leveraging several misconfigurations on the device.

A case study which shows how I was able to achieve account takeover due to misconfigured OAuth.

A case study which shows how it was possible to bypass traditional IDOR using parameter pollution.

Contact Me

I’m super approachable and do not hesitate to contact me. You can reach me out on my email id: gaurang.bhatnagar@yahoo.in or can reach me on my social media profiles. My DM’s are always open.