The latest articles on DEV Community by Akash Bhavsar (@bhavsar667). https://dev.to/bhavsar667 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F23883%2F7882ed8f-bc07-4af2-b61e-c63892d694f1.png https://dev.to/bhavsar667 en Akash Bhavsar Sat, 01 Jul 2017 09:49:43 +0000 https://dev.to/bhavsar667/hi-im-akash-bhavsar https://dev.to/bhavsar667/hi-im-akash-bhavsar <h2> 👋 About Me </h2> <p>I'm an Application Security Consultant &amp; Penetration Tester based in Melbourne, Australia, with over 7 years of technical experience bridging offensive security and full-stack development.</p> <p>Currently working as an Application Security Engineer at Sydney Tools, where I focus on:</p> <ul> <li>Penetration testing web applications and APIs</li> <li>Secure code reviews and CI/CD pipeline security</li> <li>Hardening cloud infrastructure (AWS/GCP) and container environments</li> <li>Mentoring development teams on secure coding practices</li> </ul> <h2> 🛡️ Security Focus </h2> <p>I specialize in identifying and exploiting vulnerabilities in business-critical applications, with hands-on experience in:</p> <ul> <li>OWASP Top 10 threats (SQLi, XSS, authentication bypasses)</li> <li>Tools: Burp Suite, Metasploit, Nmap, Wireshark</li> <li>Cloud security across AWS and GCP</li> <li>Docker/Kubernetes hardening</li> <li>SAST/DAST integration (Snyk, Trivy, SonarQube)</li> </ul> <h2> 🎓 Certifications </h2> <p><strong>OffSec Certified Professional+ (OSCP+)</strong> | December 2024<br><br> <a href="https://api.accredible.com/v1/frontend/credential_website_embed_image/certificate/169502822" rel="noopener noreferrer">View Credential</a></p> <h2> 💻 Technical Background </h2> <p>Before transitioning into security, I spent 6+ years as a full-stack developer building SaaS and B2B ERP systems with Python, Node.js, React, and TypeScript. This development background gives me a unique perspective when assessing application security - I understand how developers think and can bridge the gap between engineering and security teams.</p> <h2> 🔗 Find Me Online </h2> <ul> <li> <strong>Portfolio:</strong> <a href="https://akash-bhavsar.github.io/" rel="noopener noreferrer">akash-bhavsar.github.io</a> </li> <li> <strong>GitHub:</strong> <a href="https://github.com/Akash-Bhavsar" rel="noopener noreferrer">Akash-Bhavsar</a> </li> <li> <strong>Hack The Box:</strong> <a href="https://app.hackthebox.com/profile/2430357" rel="noopener noreferrer">https://app.hackthebox.com/profile/2430357</a> </li> <li> <strong>LinkedIn:</strong> <a href="https://linkedin.com/in/bhavsar667" rel="noopener noreferrer">linkedin.com/in/bhavsar667</a> </li> <li> <strong>Twitter:</strong> <a href="https://twitter.com/bhavsar667" rel="noopener noreferrer">@bhavsar667</a> </li> </ul> <h2> 🎯 What I'm Working On </h2> <p>Currently sharpening my penetration testing skills through Hack The Box challenges and staying current with the latest vulnerabilities and exploitation techniques. Always interested in connecting with others in the cybersecurity community!</p> <p>Feel free to reach out if you want to discuss offensive security, application security, or just chat about the industry. Always happy to help fellow security enthusiasts!</p> <p>Nice to meet you. 🤝</p> cybersecurity pentesting appsec introduction