Vivek Mahajan

Security Analyst & Trainer

Vivek Mahajan currently serves as a Security Analyst and Trainer, at IIS. His work mainly focuses on conducting Security Training, Vulnerability Assessment and Penetration Testing for NII’s premier clients. His technical abilities span a very wide range of technologies across web applications, networks, operating systems, databases and web servers, however his specialization is Exploit Writing, Network Security and more Research and Developments.

Profile

  • B.C.A(Bachelor of Computer Applications), Himachal Pradesh University - 2013
  • 12th (Science –CBSE) K.V Chamera 2 -2009
  • Certified Information Security Consultant
  • Certified Professional Forensics Analyst
  • Certified Professional Hacker
  • Network Security
    • Reconnaissance of Network Services
    • Eavesdropping the network traffic
    • Configuration Review
    • VPN Security
    • Exploiting Network Services
  • Operating System Security
    • Fingerprinting Operating System
    • Vulnerability Scanning
  • Application Security
    • OWASP TOP 10
    • Business Logic Testing
    • WAF Identification and Bypass Methods
  • Digital Forensics
    • Disc Imaging
    • Image Analysis
    • Network Forensics
  • Exploit Development
    • Fuzzing
    • Structured Exception Handler Exploitation
    • Vanilla Buffer Overflow
    • Egg Hunter
  • Vivek has been exposed to a variety of different applications and network environments which have helped him enhance his understanding and technical skills.
    • Operating Systems: Windows 2K/Xp/7, Linux: Ubuntu,BT5,Kali.
    • Servers: FTP, TFTP, DHCP, Web Servers(IIS, Apache), Domain Controller
  • While conducting security assessments and researches, Vivek has familiarized himself with many of the popular tools available. Few tools he regularly uses are:
    • Nmap, BurpSuite, Tenable Nessus, Metasploit, Wireshark, GFI Langaurd, Acunetix Web Vulnerability Scanner,Nmap/Zenmap,Windows Firewall, ,NetCat, Aircrack‐ng suite, Cain & Abel, Ettercap, PWDump, Havij, OphCrack, Nikto, OSScanner, IkeScan, IkeProbe, SQLmap, Beef, Snort configuration, OSSEC configuration.
  • Vivek also has experience with the following Programming Languages
    • C, HTML,Shell scripting, Python
  • Developed Skills on Web Application Pentesting & Security Practices
  • Developed skills on Network Behavior Analysis & Packet Capturing/Filtering
  • Developed Skills on Assembly Programming
  • Good understanding of Wireless Security.
  • Created CTFs for security enthusiast
  • Android Application testing.
  • Mobile security.
  • Exploits Published on Exploit-db
  • Being a public speaker and trainer, Vivek has good communication skills by virtue of making several presentations and trainings on topics, but not limited to, Web Application Security, Social Engineering, Metasploit, Mobile Security, Android Application Testing, Wireless Hacking etc
  • Very strong commitment to quality of deliverables
  • Certified Professional Hacker (CPH)
  • Certified Information Security Consultant (CISC 6 months)
  • Certified Information Security Consultant (CISC 16 days)
  • Certified Web-App Security Professional (CWASP)
  • CEH (EC-Council)
  • Mobile Penetration testing
  • Conducted Various Seminars in Universities

Ethical Hacking Training

This course goes deep down into depths of networking, systems, web applications, actual exploitation & helps beginners to take their confident first step towards information security field.

  • 6 Weeks Comprehensive Training
  • Built by Experienced Professionals
  • Regularly update on tools, techniques in course content