Deshik Pasapala
About Candidate
Hands-on OWASP testing methodology and follows OWASP Top 10 threats during
assessment.
Knowledge of client-based report standard like NIST_800-30-V2, CVSS V3.0& CVSS
V2.0
Hands-on experience with Web Applications, Network VAPT security testing, Web Services,
Android & IOS applications.
Experiences in defining Test Methods, in-scope items, out-scope items, and Policies.
Knowledge of performing exploitation of network using pivoting technique.
Performed more than 300 Servers Vulnerability Assessments, Penetration Testing
(Internal and External), and more than 30 network devices hardening with desired
compliance Scanning using NESSUS, Nipper.
Knowledge of Source Code Analysis Using “HCL AppScan”, “Microfocus Fortify” and
“SonarQube”.
Knowledge of web services testing of both REST and SOAP.
Conduct Defect meetings with development and testing teams to discuss the defects and perform its
Root Cause Analysis.
Education
Work & Experience
Performing vulnerability assessment and penetration testing of web applications, mobile applications, and network security testing (OWASP methodologies). The testing is performed for both black-box and grey-box techniques as per client requirements. Discovery of vulnerabilities and implementation of necessary security measures for the same. Working for both IOS and Android application Penetration testing. Performing API Penetration Testing both automated and manual.
