# Rahul M S — Cybersecurity Researcher & Red Team Specialist > Cybersecurity researcher specializing in offensive security, penetration testing, and vulnerability research with 5+ years of experience. Bug bounty hunter recognized by Microsoft, Spotify, and Dell. ## About I'm a cybersecurity researcher based in India, specializing in offensive security, penetration testing, red team operations, and vulnerability research. With over 5 years of experience, I help organizations identify and remediate security vulnerabilities. ## Expertise - **Web Application VAPT** — OWASP Top 10, business logic testing, auth bypass, SSRF, XSS, SQLi - **API Security Testing** — REST/GraphQL APIs, OAuth testing, rate limiting, IDOR, data exposure - **Network Penetration Testing** — Network recon, lateral movement, privilege escalation, Active Directory - **Red Team Operations** — Social engineering, physical pentest, C2 infrastructure, evasion techniques - **AI/LLM Pentesting** — LLM red teaming, prompt injection, jailbreaking, adversarial ML - **Cloud Security Assessment** — AWS, Azure, GCP security reviews, IAM analysis, container security - **Mobile Application Testing** — Android/iOS security testing, reverse engineering, runtime manipulation - **Bug Bounty Hunting** — Responsible disclosure for Microsoft (MSRC), Spotify, Dell, Apple, and others ## Certifications - eCPPTv2 — Certified Professional Penetration Tester (eLearnSecurity) - eWPTv2 — Web Application Penetration Tester (eLearnSecurity) - eJPT — Junior Penetration Tester (eLearnSecurity) ## Projects Open-source security tools available on GitHub: - **CacheShadow** — Web cache poisoning vulnerability scanner (37 detectors, 104 PoCs) - **XBot C2** — Command and Control framework for red team engagements - **Shellcode Loader** — Advanced shellcode loader with encryption and evasion - **GitSheriff** — .git exposure detection and sensitive data scanning toolkit - **ReconFlow** — High-performance automated reconnaissance framework (Go) - **Burp MCP Client** — Burp Suite integration with Model Context Protocol ## Contact - **Email**: 1amrahul@proton.me - **GitHub**: https://github.com/1amrahul - **LinkedIn**: https://linkedin.com/in/rahul-m-s-372b631a2 - **Medium**: https://1amrahul.medium.com - **HackerOne**: https://hackerone.com/1amrahul - **Buy me a coffee**: https://www.chai4.me/1amrahul ## Available For - Penetration testing engagements - Red team operations - Security consulting - Vulnerability research collaborations - Bug bounty programs ## API Contact form: `POST /api/contact.php` with JSON body `{ "name", "email", "message" }`. Rate limited. See /auth.md for full API documentation.