Cyber Security Analyst

Triage Intake Analyst

Bug Bounty Researcher

Penetration Tester

Khyati Gupta

I help organizations identify, validate, and remediate real-world security vulnerabilities across Web App, API, and Thick Client applications. ✔ 3.5+ years of industry experience ✔ 3+ years of freelance bug bounty research ✔ Experience with global programs via HackerOne & Bugcrowd

Contact Me Bugcrowd

Worked With / Recognized By

HackerOne

Bugcrowd

TCS

Pantheon

TripAdvisor

Bumble

Indeed

Seagate

Mailgun

Quizlet

ABOUT ME

I am a Cyber Security professional with 3.5+ years of industry experience and over 3 years of hands-on bug bounty and vulnerability research. Currently, I work as a Triage Intake Analyst at HackerOne, where I validate, reproduce, and assess vulnerability reports submitted across global programs. My role involves ensuring report quality, determining real-world impact, and helping organizations take informed remediation actions. Previously, I worked as a Penetration Tester at Tata Consultancy Services (TCS) and as a Cyber Security Analyst at Calsoft, conducting security assessments on Web, API, and Thick Client applications. I actively participate in bug bounty programs and have been recognized in multiple Halls of Fame. My strength lies in combining deep technical analysis with clear communication between security teams and developers.

What I Do

Web Application Security Testing

As a penetration tester, I play a critical role in identifying potential security threats to an organization's networks and applications. With expertise in web application security, I design and execute simulated attacks to test defenses, providing actionable insights to strengthen security controls and protect against cyber threats.

Mobile Application Security Testing

I specialize in assessing the security of mobile applications, focusing on Android and iOS platforms. My expertise involves decompiling, real-time analysis, and thorough testing to identify vulnerabilities and weaknesses. I help organizations ensure the security and integrity of their mobile applications.

Bug Bounty Hunting

With expertise in vulnerability research and bug bounty hunting, I help companies fortify their defenses by uncovering and reporting potential security threats. My work enables organizations to proactively address vulnerabilities and maintain the trust of their customers.

Thick Client Application Security

Thick client applications demand a tailored security testing approach, considering their complex local and server-side processing. I bring expertise in manual testing, leveraging specialized tools and custom testing setups to ensure the security and integrity of thick client applications.

API Security

APIs are critical components of modern software systems. I provide expert API security testing services, analyzing API protocols, functions, and methods to detect vulnerabilities and ensure the security of sensitive data.

Triage Intake Analyst

Validate and reproduce vulnerability reports across global programs. Ensure report accuracy, severity assessment, and exploitability. Communicate findings and remediation guidance to organizations. Assist with emergency and high-severity triage. Improve internal validation workflows

🛠 Tools & Technologies

🛡️

Burp Suite

🔍

Nessus

📡

Wireshark

🐧

Linux

🌐

Amass

🔎

Subfinder

⚡

Nuclei

🗺️

Aquatone

📥

Gau

💻

Bash Scripting

🤖

Recon Automation

🔹 Experience Highlights

🧠 Triage Intake Analyst

HackerOne

Validated and reproduced vulnerability reports across global programs
Ensured report accuracy, severity assessment, and exploitability
Communicated findings and remediation guidance to organizations
Assisted with emergency and high-severity triage cases
Improved internal validation workflows

🔍 Penetration Tester

Tata Consultancy Services (TCS)

Conducted Web, API, and Thick Client penetration testing
Developed custom testing methodologies for unique environments
Delivered detailed reports with remediation recommendations
Reviewed peer reports to maintain quality and accuracy

🧪 Cyber Security Analyst

Calsoft

Performed API security testing
Prepared client-facing security assessment reports
Reviewed and filtered false positives from automated scans

Testimonials

Khyati has an exceptional ability to uncover vulnerabilities and present detailed, actionable solutions. At Tata Consultancy Services, her penetration testing expertise on web and API platforms consistently led to more robust client systems. Her reports were clear, comprehensive, and invaluable for guiding clients toward improved security. Khyati’s dedication to precision and continuous learning sets her apart as a cybersecurity professional.

Team Lead

Tata Consultancy Services

Working with Khyati on API penetration testing was an eye-opening experience. She not only identified potential vulnerabilities but also walked us through the steps to mitigate risks effectively. Her proactive approach and thorough analysis left us confident in the security of our infrastructure. It’s rare to find someone so technical yet easy to work with.

Client

Calsoft

Khyati’s passion for cybersecurity is contagious. Whether collaborating on thick client penetration tests or reviewing reports, she always brought fresh insights and innovative techniques. Her ability to mentor and provide constructive feedback made her a valuable asset to our team. I’ve learned so much working alongside her and have no doubt she will excel in any environment.

Ram

Pentosec Solutions

Growth Rate

Happy Clients

50+

Application Tested

100+

Hall of Fame

20+

Bugs Reported

200+