Hi, I’m Divyanshu Gupta — a cybersecurity enthusiast with hands-on experience in VAPT, web/API security testing, and bug bounty hunting. I live for spotting vulnerabilities, dissecting flaws, and tightening defenses with practical tooling.
Catch me at CTFs, cheering for Virat Kohli, or finishing a Clash of Clans raid between assessments.
@lostboyCertifications: CEH Practical v13, eJPT, ISO/IEC 27001 (ISA), CRTA/MCRTA, ICCA, IoT (Samsung Innovation Campus).
Projects auto-sync from GitHub via JSON in script.js. Update handles or add repos to keep the terminal fresh.
Enterprise exploitation, malware tooling, and blue-team evasion playbooks.
Offensive recon, exploitation, and report writing with hands-on labs.
Information Security Associate — compliance-driven governance and risk coverage.
Certified (Multi-Cloud) Red Team Analyst — advanced operator tradecraft in hybrid estates.
INE Certified Cloud Associate — cloud attack & hardening foundations.
Secure IoT solution design with firmware and network considerations.
Scan to add contact. Auto-generates from email or handle.
Latest writeups start here: Bug Bounty 101 — First Report, First Reward.
Browse more at medium.com/@geek.divyanshu.
Type a command (start with help or sudo su) or press 1-6. Stay idle to trigger the guided auto
walkthrough, or type normal to jump into the visual interface.
whoamiskillsprojectscertificationscontactblognormalCybersecurity Specialist
Hi, I’m Divyanshu Gupta — a cybersecurity enthusiast with hands-on experience in VAPT, web/API security testing, and bug bounty hunting. I live for CTFs, Virat Kohli masterclasses, and even the occasional Clash of Clans grind.
Security Audits
Client Track Record
Threat Monitoring
Hi, I’m Divyanshu Gupta — a cybersecurity enthusiast with hands-on experience across VAPT, web and API security, and bug bounty hunting. I live for spotting vulnerabilities, dissecting flaws, and tightening defenses with real tooling and practical methodologies.
When I’m not threat-hunting, I’m probably watching a Virat Kohli masterclass, grinding Clash of Clans, or jumping into a CTF to swap tactics with other operators.
Bachelor of Computer Applications — June 2024
Specialized in secure software patterns, exploit dev labs, and applied cryptography research.
Stacks tuned for offensive recon, full-scope exploitation, and rapid remediation guidance.
Burp Suite Pro, OWASP ZAP, Nmap, Nessus, OpenVAS, Acunetix, Nikto.
Subfinder, WhatWeb, Wappalyzer, Amass, Shodan, Gobuster, Censys.
Hydra, Medusa, CrackMapExec, BloodHound, Mimikatz.
Python, Bash, PowerShell — custom recon tooling reduced scanning by 40%.
AWS EC2/S3, AWS WAF, Cloudflare • Kali, Parrot, Ubuntu, Windows.
Recent missions blending red teaming, compliance, and enablement for high-trust orgs.
Python steganography toolkit for hiding payloads in images/audio with audit-friendly logging.
Modular network reconnaissance scripts for Windows environments.
Detailed Chill Guy challenge notes capturing flags, payloads, and exploit reasoning.
Ready for audits, CTF collabs, or just swapping tactics? Here’s how to reach me.
TryHackMe, CTFs, and ongoing lab experiments start here:
Latest writeups hit the /blog page first.
Hand-picked writeups hosted on Medium and linked from this site first. New labs & playbooks drop here.