Profile Picture

Sherasiya Mohamad Tehan G.

Wankaner, India

kingstar75114@gmail.com

+91-1234567890

LinkedIn: https://www.linkedin.com/in/mohammadtehan/

Summary

Passionate Cybersecurity Researcher and Bug Bounty Hunter with over 3 years of experience identifying vulnerabilities in web applications and networks. Reported multiple vulnerabilities on platforms like HackerOne, Bugcrowd, and Synack, specializing in XSS, SQLi, and OAuth flaws. Trained 20 students in ethical hacking and bug bounty techniques, helping some secure initial bounties starting at $50. Committed to continuous learning and preparing for Certified Ethical Hacker (CEH) certification.

Work Experience

Cybersecurity Trainer

Cyber Protectors - Arya Institute, Rajkot, Gujarat
Jan 2023 – Present

  • Led hands-on training for 20 students in bug bounty and ethical hacking, focusing on web and network security.
  • Developed curricula using platforms like HackerOne, Bugcrowd, and Synack, enabling some students to earn initial bounties of $50-$100.
  • Conducted real-world simulations and case studies to teach vulnerability analysis and exploitation techniques.
  • Mentored individuals to kickstart their cybersecurity careers through bug bounty programs.

Bug Hunter / Security Researcher

Cyber Protectors - Arya Institute, Rajkot, Gujarat
Oct 2021 – Present

  • Reported multiple vulnerabilities, including XSS, OAuth flaws, and subdomain takeovers, across major platforms.
  • Performed advanced penetration testing using tools like Burp Suite, Nmap, and Amass, enhancing system security.
  • Crafted payloads and bypassed WAFs to uncover exploit chains (e.g., IDOR + Upload = RCE).
  • Contributed to VDPs and published cybersecurity write-ups to share knowledge.

Education

  • B.Sc. in Information Technology - Surendranagar University
  • 12th Science (B Group) - The School of Science, Rajkot
  • Preparing for Certified Ethical Hacker (CEH) - EC-Council

Achievements

  • Contributed to vulnerability disclosure programs on platforms like HackerOne and Bugcrowd.
  • Mentored students who earned initial bounties starting at $50 on bug bounty platforms.
  • Published multiple cybersecurity write-ups featured in industry blogs and forums.

Skills

  • Vulnerabilities: XSS, SQL Injection, CSRF, OAuth Flaws, Subdomain Takeovers
  • Tools: Burp Suite, Nmap, Amass, Subfinder, XSStrike, XSS Vibes, IBRAHIMXSS
  • Platforms: HackerOne, Bugcrowd, Synack
  • Techniques: Reconnaissance, WAF Bypass, Parameter Fuzzing, Exploit Chaining

Languages

  • English: Professional
  • Gujarati: Professional