Ayush Aggarwal

Cyber Threat Intelligence

Proficient in collecting, analyzing, and disseminating threat intelligence to enhance cybersecurity defense strategies. I have worked extensively with OpenCTI in the context of digital public infrastructure, building and managing comprehensive threat intelligence feeds, and integrating them into existing security operations to identify and mitigate potential risks. My experience includes managing threat data, detecting emerging threats, and ensuring the resilience of public digital systems through actionable intelligence.

Bug Bounty & Vulnerability Research:

Expertise in discovering, reporting, and remediating vulnerabilities in web applications, APIs, and enterprise systems. Strong track record in participating in top-tier bug bounty programs (Meta, BBC, Microsoft) and contributing to critical vulnerability disclosures (e.g., CVE-2023-37728).

Offensive Security & Penetration Testing:

In-depth knowledge of web/API penetration testing, vulnerability scanning, and exploiting security weaknesses. Skilled in using tools like Burp Suite, Metasploit, and Nmap for identifying and exploiting vulnerabilities.

Threat Hunting & Incident Response:

Hands-on experience in investigating and mitigating security incidents, utilizing tools like EDR, SIEM, and log analysis to identify indicators of compromise (IOCs) and understand attacker behavior.

Security Automation & CI/CD:

Integrated automated security tools into CI/CD pipelines to secure code and application deployments. Expertise in Ansible, Jenkins, and SonarQube for securing DevOps environments and streamlining vulnerability management workflows.