Software Development, Web application Security testing, VAPT, Networki

A lka Beniwal

DOB – ** February ****

ab2o3x@r.postjobfree.com

+91-946******* (INDIA)

Onskype: Alka.Beniwal3

OBJECT IVE:

To explore and enhance my skills in secure application development, Application

Security, Penetration testing, software vulnerability Assessment, Network Security,

Mobile Security and secure code review while working to enhance the security

posture of clients/organization.

EDUCAT IONAL QUAL I F ICAT IONS:

Class/Semester School/colle Board/Univer Year of Percentage

ge sity p assing

B. Tech BKB IET, RTU, Kota 2013 82.0

P ilani

12th JNV, Kajra CBSE 2009 83.4

10th JNV, Kajra CBSE 2007 87.0

TECHN ICAL SKILLS:

• Operating system : Linux, Windows 8

• Language: C#, Java, C, C++

• Web language: Asp.net, HTM L5, CSS3.

• Networking tools: GNS3, Dynamips

• Security tools: Nmap,Nessus, B urp suite, Fiddler, W ireshark,BackTrack,Metasploit

• Database: M icrosoft sql server, Mysql

• Other tools: V isual Studio 2012, Twit ter Bootstrap, Shell scriptin g

• Networking: Router Administration

PROJECT DETAI LS:

• Owasp Top 10 May 2013

Aim of this project was to exploit a vulnerable web application and to understand

OWASP top 10 vulnerabilities. WebGoat was used as target web application. Some of

t he tools used were Burp suite and Fiddler.

• Mail server: March 2013 to May

2013

Aim of this project was to develop an email server for sending, receiving and storing

emails over a Local Area Network. Signup and login functionality were provided to

users. Backend database for keeping the records were implemented with Microsoft

SQL server.

• Tshoot topology: J une

2012-July 2012

Aim of this project was to develop a Tshoot topology with help of CISCO Router.

Various routing protocols like OSPF, EIGRP and BGP were implemented and Router

administration was done. Some of the tools used were GNS3, Dynamips and

W ireshark.

P RESENTAT IONS:

• Session Hijacking

Session hijacking Scenarios, steps of session hijacking and their countermeasures

were discussed.

• SSL and Digital certification

Various protocols of SSL, their functionality and how it provides a secure

communication channel were discussed.

• Proxy Server

Brief Int roduction, purpose and functionality of proxy server were discussed.

I mprovement in network performance was also highlighted.

• Google - An I nt roduction

Brief introduction and Google page ranking criteria were discussed.

WORKSHOPS AND I N D USTR IAL TRA I N I NG:

• Model driven engineering (March 2012)

Aim of workshop was to exploit domain models that are abstract representations of

t he knowledge and activities that govern a particular application domain by using

ECLIPSE.

ACH IEVEMENTS AND EXTRA CURR ICU LAR ACT IV I T I ES:

• Got 1st position in Techno-visual quiz at QUSAR(Technical fest).

• Got 1st position in Technical seminar of QUSAR(Technical fest).

• Won 1st prize in declamation under cluster level li terary competition.

• Participated in state level GK competition and scored 74%.

• Won BRONZE medal in 1st ASIA SEIKO KA I karate championship.

• Participated in NATIONAL VOLLEY BALL MEET after qualifying the cluster &

regional levels.

• Won Silver medal in 4th NATIONAL OPEN I NTER SCHOOL TAEWANDO

competition at Darjeeling.

• Active member of IETE.

PERSONAL SKILLS:

• Passionate about new developments and techniques in digital domain

• Strong team player but can work alone, if required.

• Conversant with H indi and English.

HOBB IES AND ACT IV I T I ES:

• Following technologies, new t rends and Blogs

Date: 20, July, 2013

Contact this candidate