I'm Aniket

I break things to make them secure.
Then I build them robust.

aniket@kali:~/portfolio

> initializing system...

> loading modules: [react, nextjs, node, nmap, burp]

> establishing secure connection...

> access granted.

> cat /etc/profile

ROLE="Full-Stack Developer + Security Analyst"

LOCATION="New Delhi, India"

./contact_me github linkedin

scroll

whoami

/* quick overview */

Full-stack developer with a passion for cybersecurity. I enjoy building efficient, scalable applications while ensuring they remain secure against modern threats.

My journey started with web development and evolved through CTFs, teaching me to think like an attacker to build better defenses. I strive to create software that is not just functional, but fundamentally secure.

$ cat /proc/stats

apps shipped

200+

CTF solves

Top 1%

TryHackMe

75%

time saved

$ cat education.log

M.S. in Economics (World Economy)

Jawaharlal Nehru University

Jul 2024 - May 2026New Delhi, India

B.Tech in Electronics & Communications Engineering

Jawaharlal Nehru University

Nov 2021 - May 2025New Delhi, India

arsenal

/* tools of the trade */

CLIENT

What users see

React 19TypeScriptTailwind CSS v4Framer MotionReact QueryZodRedux ToolkitUnit/E2E TestingResponsive Design

SERVER

Cloud & logic

Node.jsExpress.jsRESTful APIsJWT/OAuth 2.0WebSocketsServerless

DATA

Storage & Schema

MongoDBMongoosePostgreSQLPrisma ORMRedisSupabaseMongoDB AtlasMySQL

OFFENSE

Breaking things

Penetration TestingVulnerability AssessmentWeb Security (OWASP)Threat AnalysisIdentity ManagementSecurity AuditingSOC Operations

ARSENAL

Tools & Languages

PythonC++CBashSQLBurp SuiteMetasploitNmapWiresharkSplunkSIEM (ELK)SnortZeekGobuster

OPS

Making it live

GitGitHub ActionsVercel/NetlifyDockerCI/CD PipelinesAWS (S3/Lambda)Linux (Kali/Ubuntu)

$ echo $LANGUAGES

English (Professional) |Hindi (Native)

$ echo $SOFT_SKILLS

Problem Solving | Analytical | Self-Learning | Detail-Oriented

ops

/* missions completed */

Remote

Cybersecurity Intern

@ Elevate Labs

Aug 2025 - Sep 2025

[1]Developed cyber threat intelligence platform using Node.js and React, integrating VirusTotal and AbuseIPDB APIs for automated IOC enrichment

[2]Built async ingestion pipeline processing 1,000+ malicious indicators daily, reducing manual analysis time by 75%

[3]Implemented RBAC, RESTful API with 20+ endpoints, and multi-format export capabilities using TypeScript

Remote

Full Stack Web Developer Intern

@ InternPro

Jun 2025 - Aug 2025

[1]Engineered full-stack Event Registration Platform using React, Node.js, and MongoDB with TypeScript

[2]Developed 20+ RESTful API endpoints secured with JWT and RBAC, reducing unauthorized access by 95%

[3]Built responsive Tailwind CSS UI and Admin Dashboard, improving page load time by 40%

$ more opportunities loading...

projects

/* things i've built */

~/projects/http-smugglerhttp-smuggler

HTTP Smuggler

Security Testing Tool

Advanced tool for detecting HTTP Request Smuggling vulnerabilities including CL.TE and TE.CL.

➜Implemented detection logic for CL.TE and TE.CL desync attacks

➜Built with AsyncIO for high-performance concurrent scanning

➜Custom HTTP client implementation to bypass standard library protections

PythonAsyncIOHTTP/2Security Testing

~/projects/t-findert-finder

T-Finder

Technician Services Platform

Full-stack technician marketplace connecting service providers with customers.

➜JWT authentication and RESTful API with 8+ endpoints

➜Dual-role dashboard system with Mongoose ODM

➜Deployed on Vercel with 99% uptime

MongoDBExpress.jsReactNode.jsTypeScript

writing

/* direct links to the latest posts on blogs.aniketpandey.website */

open all posts

4/11/2026

Tracking an Insider Threat: TryHackMe "Have a Break" Writeup

So I just wrapped up the "Have a Break" room on TryHackMe, and honestly, this one was a blast. It's not your typical CTF — instead, you're t...

read on blog

3/31/2026

TryHackMe Plant Photographer Walkthrough: SSRF, File Read, and Werkzeug RCE

Room Overview Room: Plant Photographer — TryHackMe Difficulty: Medium Category: Web Exploitation / SSRF / RCE The premise of this room is si...

read on blog

3/11/2026

When the AI Becomes the Weapon: A Deep Dive into Prompt Injection

Imagine you deploy a customer support chatbot powered by GPT-4. You've spent weeks fine-tuning the system prompt: tone, boundaries, what it ...

read on blog

certs

/* verified skills */

SOC Level 1

TryHackMe

Feb 2026

Completed SOC Level 1 path covering security operations, SIEM, intrusion detection, threat intelligence, and incident response workflows.

Web Application Pentesting

TryHackMe

Jan 2026

Comprehensive web application penetration testing covering OWASP Top 10, SQL injection, XSS, and authentication bypasses.

SQL (Advanced)

HackerRank

Oct 2025

Advanced SQL proficiency including complex queries, window functions, CTEs, and database optimization techniques.

Jr Penetration Tester

TryHackMe

May 2025

Achieved 90% success rate in hands-on penetration testing labs across web applications and network security assessments.

Junior Cybersecurity Analyst

Cisco

Sep 2024

Trained in network security and threat analysis, identifying 10+ vulnerability types in enterprise environments.

Cybersecurity Specialization

Google

Mar 2024

Learned security frameworks, risk management, and incident response covering 20+ security scenarios and OSINT techniques.

Advanced Learning Algorithms

Coursera

Dec 2023

Fulfilled neural networks and deep learning training with hands-on implementation achieving 88%+ model accuracy.

stats

/* activity & achievements */

github_contributions

tryhackme_stats

loading badge...

Actively learning offensive security through hands-on labs and CTF challenges.

→ view tryhackme profile

ping

/* let's connect */

Got a security audit that needs doing? A web app that needs building? Or just want to talk shop about the latest CVEs? I'm all ears.

mail@aniketpandey.website

LOCATION

New Delhi, India

secure_channel