Vinay Sharma

APPLICATION SECURITY ENGINEER

Do you want to add your organization to this graph?

Let's Connect

About Me

I am a passionate Security Researcher and VAPT specialist currently pursuing my BTech in Computer Science at Pimpri Chinchwad University with a 9+ CGPA. My journey in cybersecurity is driven by a deep curiosity to uncover vulnerabilities before they are exploited, with a focus on building defensive architectures and performing secure code reviews.

Over the course of my research, I have been officially recognized by NASA, the World Health Organization, Harvard University, and Eduplus for reporting critical security vulnerabilities. I have also discovered two CVEs, registered as CVE-2025-61148 and CVE-2026-35678.

Beyond active security research, I enjoy engineering custom hardware and software solutions. I built a 100kV EMP generator to test hardware resilience against electromagnetic threats, and created secure asynchronous data wiping software to guarantee the clean and safe recycling of digital assets.

Technical Arsenal

Pentesting Web Security Networking Protocols OWASP Top 10 Burpsuite Metasploit Scripting & Automation MITRE ATT&CK Secure Code Review Threat Modeling DevSecOps Knowledge API Security Expertise Communication & Reporting

Featured Work

April 2026 – Present

SENTINEL

Agentic AI IoT Security System

A consumer-grade, plug-and-play network security appliance powered by a multi-agent AI system. It sits inline between the router and home network to automatically discover IoT devices, detect anomalies using an LSTM model, classify threats via a local LLM mapped to MITRE ATT&CK, deploy honeypots to trap attackers, and enforce firewall rules in real time. Designed to run entirely on a Raspberry Pi 5 with no cloud dependency.

Python LangGraph Gemma 4 LSTM eBPF / XDP FastAPI Next.js MITRE ATT&CK

Aug 2025 – Jan 2026

Destroyer Project

Secure Data Wiping for Trustworthy IT Asset Recycling

Engineered a cross-platform data destruction software for Linux and Windows using Python and Flask, featuring a REST API, interactive CLI, and an asynchronous wipe engine supporting multiple erasure standards.

Python Flask REST API

June 2024 – Oct 2024

DDoS Detection ML Model

Cybersecurity Research – Deep Learning, Explainable AI

Trained a hybrid machine learning and deep learning framework integrating Logistic Regression, Random Forest, Neural Networks, and Genetic Algorithms to detect low- and high-rate DDoS attacks, achieving 99.35% accuracy.

Deep Learning Explainable AI SDN

April 2024 - May 2024

Hybrid EMP-Cyber Warfare

High Voltage Electromagnetic wave system

Engineered a 100kV Marx Generator with a helical coil to induce transient EMP surges on unshielded IoT devices, integrated with a cyber warfare layer featuring deauth attacks, rogue APs, and WPA2 brute-forcing.

Hardware Design RF Attacks Hashcat

Experience

May 2026 – Present

Full Stack Developer Intern

Fiinny (Remote)

Designing and developing secure backend systems and RESTful APIs, implementing robust authentication and input validation to mitigate OWASP Top 10 risks.
Contributing to frontend/UI development with an emphasis on preventing client-side vulnerabilities like XSS, CSRF, and open redirects.
Identifying, debugging, and patching security and performance bottlenecks across the full technology stack.
Refactoring code to improve database query safety, system performance, scalability, and general code quality.
Participating in secure application deployment processes, emphasizing safe secret management, HTTPS configurations, and container hardening.
Developing secure mobile elements using Flutter, ensuring encrypted local storage and safe API communication.

Mar 2024 – Apr 2024