Post Job Free
Sign in

Security Pvt Ltd

Location:
New York, NY, 10257
Posted:
December 09, 2010

Contact this candidate

Resume:

Saurabh Harit

Contact No: +27-768******

E-mail: *******.*****@*****.***

Summary

I am presently working with SensePost, South Africa, as Senior

Security Analyst. SensePost is an independent and objective

organization, specializing in information security consulting,

training, security assessment services and IT Vulnerability

Management.

I have diversified experience in vulnerability assessment and

penetration testing across various domains such as access control,

building solutions, aerospace, banking and so on. I also have

experience in source/architecture review and reverse engineering. I

have extensively worked on developing methodologies & practices for

achieving secure code for various applications, which includes web

applications, web services, client / server applications and

standalone applications. I have also worked on proof of concept

exploits and white papers on reverse engineering and ethical hacking.

Certifications

Certified Ethical Hacker (CEH)

Skills Matrix

Linux, Unix,

System Shell programming,

Programming: Unix internals using C++,

Windows 9x series

Operating Systems: Windows 20xx series

Linux, Fedora

MAC OS X

C/C++,

Development VC++,

Languages: MS-SQL

MFC, DLLs and ATL COM

Perl, python, java script

Security Concepts -

Application Client-Side Attacks

Security Concepts Web Application/Services Attacks

Network Penetration Testing

Reverse Engineering

Threat Modeling

Additional Skills Understanding of microprocessor

architectures (x86)

TCP\IP stack

Disassembly

PE File format

Import Table Reconstruction

Threat Modeling (Access Control Systems)

Recognitions

1) Lead trainer for SensePost "Hacking By Numbers" training courses

2) Key contribution in "Cache On Delivery" research talk presented

at BlackHat, Vegas 2010

3) Awarded with "Individual Excellence Award" for my work in

wireless penetration testing on patented product - Honeywell

Technologies

4) "Employee of the Year Award" for reverse engineering of key

products - SafeNet Pvt Ltd

5) Paper presentation on Reverse Engineering of Packers. Refer to

link below:

http://www.elitehackers.info/forums/showthread.php?p=46462

6) Paper presentation on weakness of WEP and WEP crack analysis.

http://www.elitehackers.info/forums/showthread.php?p=50567#post50

567

Work Profiles

1) SensePost

I am working with SensePost as Senior Security Analyst. My

primary role is to perform vulnerability assessment and

penetration testing for various clients across the globe. I have

worked for numerous prestigious companies including leading

banks, telecommunication service providers, institutions, gaming

companies, insurance companies and so on. As of now, I have

conducted over 300 security assessment comprising of internal &

external network assessments, web applications & services

assessments, threat modeling and so on, while working for clients

globally.

Additionally, I am actively involved in security research work

for conferences like BlackHat, HITB, ZACON etc. I have presented

talks at local security conferences in South Africa. I have also

delivered security trainings for local and global clients.

SensePost has a reputed security training courses such as Hacking

By Numbers and I am lead trainer for these courses.

I am very well aware of emerging web application technologies and

frameworks.

2) Honeywell Technologies

I was primarily involved in vulnerability assessment and

penetration testing of software, web applications, web services

and network. In addition to this, I was also involved in

vulnerability research and secure programming, threat modeling. I

had worked on some of the key projects in aerospace domain and on

patented products.

3) Wipro Technologies

I was primarily involved in vulnerability assessment and

penetration testing. I was also involved in developing Proof of

Concept code for different clients and secure product

development. I have worked for clients like Apple computers,

Microsoft etc.

4) SafeNet

At Safenet, my work profile was to perform security testing for

client software. This included fault injection testing,

penetration testing, smoking tests, and license management. I was

involved in reverse engineering, analyzing packers and

encrypters. I had working at client site for a long time. I was

also responsible for research and development of anti-debugging,

anti-breakpoint techniques.

Employment History

1) SensePost Pvt Ltd

i. Period of Employment: June 2009 till Present

ii. Designation - Senior Security Analyst

2) Honeywell Technology Solutions, Bangalore, INDIA

i. Period of Employment: December 2006 till May 2009

ii. Designation - Senior Security Analyst

3) Wipro Technologies, Bangalore, INDIA

i. Period of Employment: October 2005 till December 2006

ii. Designation - Senior Security Engineer (Enterprise

Security Solutions)

4) SafeNet Infotech (P) Ltd., New Delhi, INDIA

i. Period of Employment: July 2004 till September 2005

ii. Designation - Security Consultant

Total IT Experience

6+ Years

Educational Qualification

Qualification Branch / Stream Year of College/Scho University Percentage

passing ol / Board of Marks

Post Graduate System July, C.D.A.C, C.D.A.C. System

Diploma Programming & 2004 Sector 62, Prog: A+

VLSI Design Noida, U.P. VLSI

Design: A

Bachelor Of Electronics & May, 2003 P.C.E.A, Nagpur 63%

Engineering Telecommunicatio Nagpur. University

(B.E) n , Nagpur



Contact this candidate