Prashant Kc

Security Enthusiast & Penetration Tester

About Me

Hi! I'm a penetration tester and security enthusiast with a passion for making secure, scalable applications and sharing knowledge through technical writing.

What I Do

I specialize in web application security, penetration testing. My day-to-day work involves:

  • Security Research: Finding and documenting vulnerabilities in web applications
  • Technical Writing: Creating detailed writeups and tutorials on security concepts
  • CTF Competitions: Participating in Capture The Flag challenges and security competitions

Security & Tools

  • Pentesting: Burp Suite, sqlmap, Metasploit, Nmap
  • Forensics: Wireshark
  • Crypto: OpenSSL, cryptographic protocols

Certifications

Experience

Security Researcher

  • Conduct security assessments and penetration tests for web applications
  • Develop secure authentication and authorization systems
  • Write security documentation and best practices guides

Junior Penetration Tester

  • Assisted in penetration testing engagements for various clients
  • Identified and reported security vulnerabilities
  • Collaborated with development teams to remediate findings
  • Participated in internal security training and workshops

Education

Bachelor of Computer Application
[Tribhuvan University] | [Running]

Current Focus

I'm currently focused on:

  • Advanced web application security testing techniques
  • Container security and Kubernetes hardening
  • Writing technical content about security vulnerabilities
  • Contributing to open-source security tools
  • Participating in bug bounty programs

Blog & Writing

I maintain this blog to document my learning journey, share security research, and create tutorials that help others understand complex security concepts. My writeups cover:

  • CTF challenge walkthroughs
  • Vulnerability analysis and exploitation techniques
  • Secure coding practices and patterns
  • Tool reviews and usage guides
  • Web application security fundamentals

Get in Touch

Feel free to reach out if you:

  • Want to collaborate on security research or projects
  • Have questions about any of my writeups
  • Need help with security assessments
  • Want to discuss security topics or exchange ideas

You can contact me via:

This site is built with pure HTML, CSS, and vanilla JavaScript. No frameworks, no tracking, just content. The design is inspired by the Gruvbox color scheme and terminal aesthetics.