Santosh Singh

Security Researcher

Talent

DehradunMember since 31 March 2026

DockerKubernetesCI/CD PipelinePythonCJavaHTMLCSSJavaScriptMYSQLMongoDBEthical HackingPenetration TestingVulnerability AssessmentWeb Application TestingIncident ResponsePhishing SimulationSystem HardeningRed & Blue TeamingNetwork SecurityReconnaissanceExploitationBurpSuiteNmapMetasploitWiresharkOWASP ZAPKali LinuxLinuxApache ServerSplunkWazuhGraylogSecurity OnionELK StackPandasScikit-learnFlaskRegexBash scriptingJupyter NotebookChatbot APIsDevToolsSET ToolkitCCNA Networking

Hire this person

Send a job offer directly to this candidate

DockerKubernetesCI/CD PipelinePythonC

About

Cybersecurity Enthusiast with hands-on experience in web app testing, phishing simulation, and incident response. Self-taught and passionate cybersecurity enthusiast with solid hands-on experience in ethical hacking, red teaming, and scripting. Known for building automation tools, simulating attacks in isolated labs, and exploring vulnerabilities through CTFs and custom threat emulation projects.

Comfortable with offensive security tooling, network exploitation, and Python development. Currently working as an Information Security Analyst at Digital Folks Cooperation, contributing to real-world security assessments and incident response operations. Always driven to turn chaos into code and share security awareness through training, workshops, and proactive defense.

Experience

Information Security Analyst at Digital Folks Cooperation (2025-07 – 2025-08)

Conducting vulnerability scans and penetration tests across web applications and infrastructure

Conducting vulnerability scans and penetration tests across web applications and infrastructure
Analyzing security logs and SIEM data to identify potential threats
Participating in red team–blue team simulations to test internal controls
Assisting in drafting security reports and communicating risk to non-technical stakeholders
Working with the DevSecOps team to integrate security into CI/CD pipelines
Supporting awareness programs and internal phishing simulations for employee training

Cyber Security Intern/Trainee at Brillica Services (2024-10 – 2025-02)

Simulated red team attacks and conducted web application vulnerability testing in a controlled environment

Simulated red team attacks and conducted web application vulnerability testing in a controlled environment
Built personal testing lab using Kali Linux, OWASP Juice Shop, and DVWA for exploit validation
Used Metasploit and Nmap to identify exploitable services in lab infrastructure
Analyzed logs, generated reports, and delivered incident briefs in standard formats