Hey! I am

Harshit Sengar

About

About Me

  • I am working as an Information Security Engineer. I have experience in Web Application Penetration Testing, Mobile Application Penetration Testing, API Penetration Testing, Thick Client Application Penetration Testing, Network Penetration Testing, Cloud Security Audit & Vulnerability Assessment. I play CTFs. I love to break the security. Hacking is my passion. I love to travel & dance.
  • Name: Harshit Sengar
  • Address: Noida, UP, India
  • Email: hsengar.100[at]gmail.com
  • Phone: +91-76785 74185

0+

Hall of Fame

0+

Years of Experience

0+

Companies I secured

Experience

Jul 2020 - Present

Information Security Engineer

Biz2Credit Info Services Pvt Ltd

Fulltime

March 2020 - Present

Red Team Member

Synack - USA

Freelance

Jan 2020 - July 2020

Security Analyst

Defencely Cloud Security Pvt Ltd

Fulltime

Jun 2019 - Dec 2019

Security Analyst

Kratikal Tech Pvt Ltd

Internship

Education

2016-2020

B.Tech in Computer Science Engineering

VGI - Affilated to AKTU
2016

Intermediate

Maharishi Vidya Mandir
2014

High School

Maharishi Vidya Mandir

Skills

Vulnerability Assessment

90%

Penetration
Testing

85%

Application Security

80%

Network Security

80%

Front-end Web Development

70%

Python

60%

Bash Scripting

65%

Cloud Security

70%

Threat Modelling

60%

Awards & Participations

Mar 2020
Got Invitation for Private Bug Bounty Program

CCTNS Hackathon 2020 - Organised by National Criminal Records Bureau (NCRB) India.

Feb 2020
Got Invitation for Private Bug Bounty Program

Bharti Airtel.

Jul 2019
Certification of Appreciation & Swags

Awarded by RVDP NCIIPC (A unit of NTRO)

2019
1st Position in Breach the Firewall

Inter College Competition Organised by IMS College.

2019
Participated in TCS HackQuest 4.0

Organised by TCS

Services

Services

Here is a list of things that I can do for you

Blog

My Blog

Unique Case for Price Manipulation | BugBounty | VAPT

Jul. 18, 2020 Harshit Sengar

Price Manipulation is a test case for Price Tampering. Generally, Penetration testers change the amount value of the product (i.e., shoes, tshirt, flight ticket, etc) from Rs.XXXX (or $XXXX) to Rs1 (or $1) in price tampering .

How to add infinity amount(cash) to E-Commerce application’s wallet just from 1 INR only.

Jul. 12, 2020 Harshit Sengar

Hi Infosec guys!!!! Hope you are doing well. If you are here then you are interested in learning more n more. This finding is not unique for some 1337 infosec guys but most of the guys do not test this case.

Multiple flaws leads to Account Takeover within an Application

May 19, 2020 Harshit Sengar

Hi folks, I tested an application that was too vulnerable. So, I thought about writing Account takeover test cases. I will not disclose the name of the company. In this writeup, I will use “company” as a company name.

More Blogs

I'm Available for freelancing

Hire me

Contact

Contact Me

Address

Noida, UP, India

Contact Number

+91-76785 74185