Profile
Welcome to the domain of Mr-IoT, a hub where open-source IoT security knowledge flourishes. Since 2017, I've been at the forefront of pioneering IoT security through the development of the IoT pentesting OS, creating curated lists, and publishing insightful blogs, alongside fostering the vibrant IoTSecurity101 community across Reddit, Telegram, and Discord. Known for transforming complex IoT security challenges into accessible, actionable knowledge, my mission is to empower, educate, and unite cybersecurity enthusiasts and professionals alike. Dive into this platform to explore resources, insights, and a community dedicated to securing the interconnected world, all curated by someone who lives and breathes IoT security. Join us in shaping a safer digital future.
Firmware security and Hardware Security. Embedded application security and IoT mobile apps IoT Protocols Security Testing. Secure boot testing and Reverse engineering.
Firmware security and hardware security analysis to identify and mitigate potential threats. Performed reverse engineering tasks to uncover vulnerabilities and enhance system security postures. Handling IoT/OT projects, leading to improved security practices and protocols. Conducted internal and external assessments of API, IoT devices, and hardware to ensure compliance with industry security standards. Performed mobile application and web application penetration testing to identify vulnerabilities and recommend mitigation strategies.
Conducted comprehensive security assessments across various platforms. Developed and delivered detailed project reports and presentations. Performed penetration testing in line with OWASP Top 10 for IoT, web, and mobile apps.
Specialized in pentesting IoT devices. Managed VAPT projects for web, mobile, and network security. Identified and addressed network security concerns for clients.
Provided ethical hacking training and risk assessment tools coordination. Contributed to information security blogs with research and writing. Supported multiple platforms and applications in a system administration role.
Experience
Sr. IoT Security Engineer at Crestron Electronics
Feb-2019 to Present, Bangalore, IN
Security Consultant at Aujas Networks Pvt Ltd
Jun-2018 to Feb-2019, Bangalore, IN"
Security Consultant at iSecurion Technology and Consulting Pvt Ltd
Mar-2017 to Mar-2018
Independent Security Consulting at Freelancing
Sep-2015 to Feb-2017
Security Engineer at Cartel Software Pvt Ltd
Feb-2015 to Sep-2015
CVE
CVE-2020-23512
CVE-2018-12255
CVE-2018-11339
Workshops/Villages
Hardware Security 101 Workshop
Mastering IoT Security Workshop
IoT Hacking and Security Village
Speaker
Understanding and Exploiting 433MHz Speaker at p0scon
All Null Talks
Runner UP - Concluding Nullcon2016 Promo Contest
Publications
Internet of Things Penetration Testing OS
Hunting IoT Devices with NetHunter: PART 1
IoT Security essentials 101
HOF
nobroker.in Open Redirect Vulnerability
Hall of Fame - Netgear - p1
Responsible Disclosure - UnderArmour - P1 bug
Thanks received for Bug reported in International Islamic University Chittagong
Certifications
Skills
- Hardware Security
- SideChannel Attacks
- Glitching&Fault Attacks
- Firmware RE
- Android/iOS
- Wi-Fi
- Bluetooth
- Zigbee
- Lora
- Embedded AppSec
- Plugin
- Scripting
- Embedded C
- Bash
- Python
- Rust
- OS Concepts
- Linux