Nishant Das Patnaik

Perpetual quest

to shift-left security

with fullstack engineering

for continuous trust, safety & privacy

About Me

Security engineering, to me, is not about making a compromise impossible. The goal is to make it difficult, expensive & noisy. I have pentested without expensive softwares, learnt technologies/protocols without formal documentation & built prototypes faster than expected. I'm happy when I can develop my own solutions, find the source of the problem or give a detailed fix or guidance to the right person. I'm happier when I can enable someone else to do the same.

What I Do

Public Speaker

BlackHat Europe 2016, London
BlackHat USA 2016, Las Vegas
BlackHat USA 2013, Las Vegas
NullCon Goa 2012
BarCamp Chennai 2011

Bug Bounty

Facebook
Mozilla
Atlassian
Intuit
Pinterest
Foursquare
eBay
Nokia
Cleartrip
Domino's Pizza

Open Source Projects

tweezr
AppMon
Raptor
JSPrime
Ra.2

Textbook Publications

Author

Software Hacking

Technical Reviewer

iOS Penetration Testing
Kali Linux Intrusion & Exploitation Cookbook
Kali Linux Cookbook (2nd Edition)

Employers so far

My Interests

Flight Simulators

Piano Covers

Food Recipes

Resume

Education

2010

Biju Patnaik University of Technology

B.Tech: Computer Science & Engineering

Software Programming, Computer Networks, Databases, OS Architecture, Hardware Architecture, Electronic Circuits etc.

2006

CBSE

AISSCE

Science (Physics, Chemistry), Maths, English, Software Programming

Experience

2015 - Current

eBay

Sr. Staff Security Engineer

2014 - 2015

InMobi

Security Lead

2011 - 2014

Yahoo!

Senior Paranoid

2010 - 2011

PayPal

Security Analyst

Design Skills

Defensive Systems Prototyping

95%

DevSecOps

75%

Threat Modeling

75%

Secure Code Review

75%

Penetration Testing

70%

User Interface

80%

Coding Skills

nodejs

95%

Browser DOM API

85%

Python

75%

Puppeteer

90%

Frida

75%

HTML/CSS

90%

Hands-on

Applied Cryptography
iOS Security
Java
Android Security
Docker
Redis
Kafka
memcached
Docker Swarm
Elasicsearch
Filebeat
Logstash
MongoDB
Flask
MySQL
nginx
Jenkins
Static Analysis

Blog

Design

05 Mar 2020