Uttam Yadav

Rewari, Haryana / India | +917496841566 | [email protected] | LinkedIn |

https://github.com/Uttamydv

SUMMARY
Results-driven Cybersecurity Engineer specializing in red teaming, penetration testing, and
vulnerability assessment. Skilled in network scanning, secure infrastructure design, and attack
simulation using the MITRE ATT&CK framework. Proficient in identifying threats, reporting
vulnerabilities, and implementing defensive measures to enhance organizational security .
TECHNICAL SKILLS: Vulnerability assessment and reporting, penetration testing, secure
infrastructure design, network scanning, cryptography and network Security, cloud security,
firewall configuration (pfSense), IDS/IPS (Suricata), Active Directory, ethical hacking, social
engineering, web application attacks (SQL injection, file injection, XSS, session hijacking),
threat monitoring (Splunk, ELK Stack), MySQL, PostgreSQL, Linux, Windows, C, Java, Python,
C#, Bash, PowerShell, MITRE ATT&CK, OWASP, Data structure and Algorithm .
OTHER SKILLS: Problem-solving, communication, teamwork, project management,
continuous learning, incident response, troubleshooting, strategic planning.

CYBERSECURITY PROJECTS AND LABS

Cybersecurity Homelab and Penetration-Testing Project
Sept 2024 – Dec
GitHub - Uttamydv/Cybersecurity-Homelab-and-Penetration-Testing-Project
Project Overview: Built and managed a cybersecurity homelab for hands-on penetration
testing, vulnerability exploitation, Active Directory setup and system hardening. Gained
practical experience in network scanning, web application vulnerabilites and system
exploitation.
Key Skills & Tools:
 Penetration Testing & Exploitation: Utilized Metasploit, OpenVAS, Nmap, and Burp
Suite for vulnerability scanning and exploitation (e.g., XSS, SQL Injection, RCE).
 Network & Web Security: Conducted network enumeration, identified
misconfigurations, and exploited services like Apache2, vsftpd, mysql and SMB etc.
 Gaining Access: Applied techniques such as password cracking, hash capture, and
privilege escalation to gain unauthorized access.
 Tools Used: Metasploit, OpenVAS, Nmap, Burp Suite, Hydra, Hash-Identifier, Gobuster,
Netcat.

CTF Challenges Nov

2024 – current
TryHackMe | uttam171122003
Successfully completed over 50 Capture The Flag (CTF) challenges on platforms like Hack The
Box and TryHackMe, developing practical skills in various areas of cybersecurity. Notable
latest challenges include: Flip, Advent of Cybersecurity 2024, Network Reconnaissance, Linux
Filesystem analysis etc.
Skills Learned:
 Penetration Testing & Exploitation: Vulnerability discovery, network scanning,
exploring different services and exploiting security weaknesses in them.
 Web Application Security: Web attacks, including SQL injection, XSS, CSRF, web
sockets hijacking and RCE etc.
 Cryptography & Encoding: Mastered AES, RSA, hashing algorithms, and encoding
techniques.
 Networking & Reconnaissance: Passive and Active scanning, service enumeration
using Nmap with NSE.
  Privilege Escalation & Post-Exploitation: Applied techniques such as password
cracking, hash capture, and reverse engineering to escalate privileges .

EDUCATION & OTHER

Guru Jambheshwar University of Science and Technology
2021-25
Bachelor’s in Computer Science Engineering with 7.5 CGPA.
Rao Khem Chand Vidya Vihar School
2020-21
High School Certificate with 96 percentage.
TOOLS AND TECHNOLOGY: Nmap with NSE, Metasploit, Burp suite, OpenVAS, Hydra, John
the ripper, Gobuster, Hash-Id, Cyberchef, Wireshark, Splunk, MITRE ATT&CK framework,
OWASP, Suricata(IDS/IPS), pfsense.