About Me

March 11, 2024

About Sagar Dhakal

With over 15 years of experience in application security and penetration testing, I have established myself as a trusted expert in identifying and mitigating security vulnerabilities across web and iOS applications.

Expertise

  • Web Application Security: Comprehensive security assessments of web applications, identifying OWASP Top 10 vulnerabilities and beyond
  • iOS Security Testing: Deep expertise in iOS application security, reverse engineering, and secure coding practices
  • Security Consulting: Providing strategic guidance to organizations on implementing robust security measures
  • Vulnerability Assessment: Thorough analysis and reporting of security vulnerabilities with actionable remediation steps
  • Secure Code Review: Expert review of source code to identify security flaws and implement best practices

Professional Experience

Senior Security Consultant (2019 - Present)

  • Leading complex penetration testing projects for Fortune 500 companies
  • Developing custom security testing methodologies and frameworks
  • Mentoring junior security professionals and conducting training sessions

Lead Penetration Tester (2014 - 2019)

  • Conducted numerous web and mobile application security assessments
  • Discovered and reported critical vulnerabilities in major applications
  • Implemented automated security testing processes

Security Researcher (2009 - 2014)

  • Published multiple security advisories and research papers
  • Contributed to open-source security tools
  • Spoke at various security conferences and events

Education & Certifications

  • Master’s in Information Security
  • OSCP (Offensive Security Certified Professional)
  • CISSP (Certified Information Systems Security Professional)
  • CEH (Certified Ethical Hacker)
  • CREST Certified Tester

Speaking Engagements

  • Regular speaker at BlackHat, DefCon, and OWASP conferences
  • Guest lecturer at cybersecurity workshops and training sessions
  • Contributor to security blogs and technical publications

Research Interests

  • Zero-day vulnerability research
  • Mobile application security
  • Cloud security architecture
  • Application security automation
  • Secure development practices