Jaseer

Jaseer Vk

Cybersecurity Researcher • VAPT • Security Analyst

Cybersecurity Researcher specializing in SIEM-based threat detection, Linux security monitoring, and web, Android & Linux penetration testing. Experienced in developing custom detection rules using Wazuh and mapping alerts to MITRE ATT&CK.

Let's Talk Download CV

ABOUT ME

I am a Cybersecurity Researcher, VAPT Specialist, and Security Analyst with a strong focus on Penetration Testing. I specialize in identifying and exploiting vulnerabilities across web applications, Linux systems, Android platforms, and Active Directory environments.

I have hands-on experience conducting security assessments using tools such as Burp Suite, Nmap, Metasploit, SQLmap, Hydra, and Wireshark, with a solid understanding of OWASP Top 10 vulnerabilities and real-world attack methodologies. I regularly simulate attacks including brute-force, privilege escalation, and network reconnaissance to assess and strengthen system security.

In addition to offensive security, I work with SIEM tools like Wazuh and Splunk to analyze attack patterns and map them to the MITRE ATT&CK framework — enabling me to approach security from both attacker and defender perspectives.

I have built and tested multiple lab environments and security projects, including web exploitation scenarios, SSH brute-force detection, network intrusion detection using Suricata, File Integrity Monitoring (FIM), and Active Directory infrastructure with enforced security policies. I also create custom CTF challenges, such as OTP bypass scenarios, to deepen my practical exploitation skills.

With a background in Android and web application development, I understand how applications are built — allowing me to think like a developer while testing like an attacker.

EDUCATION

MAY 2025 - PRESENT

Advanced Diploma in Information Security

Offenso Hackers Academy, Kochi
OCT 2024 - MAR 2025

Android & Web Developer

Riss Technologies, Kannur
2022 - 2025

Bachelor of Computer Application

Kannur University

TECHNICAL SKILLS

Security Domains

Penetration Testing Vulnerability Assessment & Remediation Threat Hunting Incident Response Exploit Research Web & Application Security (OWASP Top 10) Network Security & Traffic Analysis SIEM Engineering & Log Analysis Active Directory Penetration Testing (Enumeration, Privilege Escalation, Credential Attacks) Cloud Security Fundamentals

SIEM & Detection Engineering

Wazuh (Syscheck, Syscollector, Custom Rules, Active Response) Splunk Suricata IDS Snort Auditd File Integrity Monitoring (FIM) Network Intrusion Detection Log Analysis SSH Brute-Force Detection Malicious Command & Privilege Escalation Detection Automated Malware Detection using Wazuh SIEM and Virus Total MITRE ATT&CK Mapping

Web & Network Security Tool

Burp Suite Nmap Metasploit Nessus Wireshark Hydra John the Ripper SQLmap

Android Security Testing Tools

ADB Genymotion Frida Drozer MobSF JADX-GUI

Network Analysis

TCP/IP HTTP/HTTPS DNS SSH Firewalls APIs Cookies Sessions

Cloud Security

AWS IAM Fundamentals Web Application Firewall ( WAF ) Cloud Security Principles

Scripting & Programming

BASH Python HTML

Operating Systems

Kali Linux Ubuntu Windows Server Android

EXPERIENCE

MAY 2025 - PRESENT

Cybersecurity Student Intern

Offenso Hackers Academy, Kochi

  • Performed penetration testing on web applications and Linux systems in a lab environment using Kali Linux, Burp Suite, Nmap, Metasploit, Hydra, SQL Map, and more.

  • Identified vulnerabilities based on OWASP Top 10 and provided remediation recommendations.
  • Simulated brute-force and privilege escalation attacks to assess security posture
  • Conducted basic Active Directory enumeration and network reconnaissance
  • Performed basic Android application penetration testing using tools like MobSF, ADB, Drozer, Frida etc.
  • Monitored and analyzed security events using SIEM tools, simulating real-world SOC operations
  • Investigated alerts, correlated logs, and supported incident detection and response workflows

OCT 2024 - MAR 2025

Android & Web Developer

Riss Technologies, Kannur

  • Developed a full-stack Android and web application “DAYCARE” using Python (Django), MySQL, HTML, and Java to manage childcare workflows efficiently.
  • Managed end-to-end development, including design, backend integration, and deployment
  • Built secure backend services and responsive user interfaces

PROJECTS

Practical security implementations and research labs.

Todo App Icon

To do list Apk

To-Do List App, built with a stylish UI, welcome screen, task priority, completion tracking, delete/clear options, filters, and interactive sound effects.

Get APK
MailboxIntel Icon

Email Analyser

Developed MailboxIntel, a web-based email security analyzer for phishing detection and threat scoring.

Visit Web

Automated Malware Detection

Integrated VirusTotal API with Wazuh to automate hash-based reputation checks and trigger high-severity (Level 12) alerts.

View Repo

SSH Bruteforce Detection

Built a solution using Wazuh SIEM to identify repeated failed login attempts.

View Repo

Malicious Command Detection

Linux security monitoring using Auditd and Wazuh SIEM.

View Repo

Vulnerability Detection Lab

System inventory and CVE-based detection on Ubuntu.

View Repo

Intrusion Detection (IDS)

NID System using Suricata and Wazuh.

View Repo

File Integrity Monitoring

Demonstrates implementation of FIM using Wazuh.

View Repo

PASSWORD ENFORCER

Client-side security auditor analyzing passwords.

Visit Web

OTP BYPASS CTF

A custom CTF challenge simulating authentication flaws.

View Repo

DAYCARE APP

Full-stack Android/Web app built to manage childcare workflows.

View Repo

CERTIFICATIONS

CompTIA Pentest+

CompTIA | Ongoing

AWS Security-Specialty

AWS Training & Certification | SEP 2025

View Certificate

AWS IAM

AWS Training & Certification | SEP 2025

View Certificate

App Developer

Riss Technologies | MAR 2025

View Certificate

ACHIEVEMENTS

Hack & Seek CTF

Top 10 Position - Offenso Academy

Advent of Cyber 2025

24-Day Challenge Completion

Python Bootcamp

Core Concept Certification

ARP & MITM

Advanced Technique Mastery

Linux Security

Machine Protection Bootcamp

PenTesting Phases

Bug Hunting Methodology

Windows Hacking

Windows Exploit Bootcamp

Cryptography & Steganography

Deep Knowledge Participation