About

May 2024 - Sep 2024

Cybersecurity Intern at SecureMyOrg (India, Remote)

Penetration testing, drafting blogs, and building security automation

June 2025 - August 2025

Pentest Tool Development Intern at Black Hills Information Security (United States, Remote)

Researching JS frameworks and building a tool to automate finding some common issues - JS Recon

Bug Bounties

Bug Bounty Hunter - HackerOne

Reputation: 1000+; Platform Username: shriyanss

Reported valid vulnerabilities in web apps and APIs (IDOR, XSS, Auth Bypass). Notable programs: Booking.com, Expedia Group, US DoD, along with other public and private programs.

Education

March 2025

🏫 High School Graduation - DAV Public School, Malighat, Muzaffarpur, Bihar, India 🇮🇳

August 2025

🧑‍💻 B.S. in Cyber Security ('29) at Rochester Institute of Technology, New York, USA 🇺🇸

Collegiate Competitions

CPTC - Collegiate Penetration Testing Competition (2025)

Ranked as 2nd in the Great Lakes Region held at Baldwin Wallace University, OH, on October 18th-19th, 2025. Advanced to Global Finals 2025, held at Rochester Institute of Technology, NY, held on January 9th-11th, 2025. Responsibilities in the team included conducting pentests on web apps and reporting them during competition.

DoE CyberForce Competition (2025)

Ranked 9th out of 93 teams from US. Responsibilities in team included finding vulnerabilities in the web infrastructure and fixing them, detecting intrusions, among others.

Notable Projects

JS Recon

JS Recon is a Node.js-based CLI tool designed to scan and extract sensitive information from web apps running JS frameworks like Next.js. It can download the code for the site, perform static analysis, generate reports, and help reverse engineer supported web apps.