A li'l bit about myself

Shubham Pandey is an accomplished cyber security professional with a proven track record in leading red team operations, adversary simulations, AI and cloud security initiatives.

Certifications:

  • OffSec Certified Professional (OSCP)
  • Certified Red Team Operator (CRTO)
  • Microsoft Certified: Cybersecurity Architect Expert (SC-100)
  • Microsoft Certified: Azure Security Engineer Associate (AZ-500)
  • (ISC)² Certified in Cybersecurity (CC)
  • AWS Certified Cloud Practitioner (AWS CCP)
  • IEC/ISO 27001:2022 LA
  • Microsoft Certified: Azure AI Engineer Associate (AI-102)
  • Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900)
  • Microsoft Certified: Azure AI Fundamentals (AI-900)
  • Certified Red Team Infra Developer (CRT-ID)
  • APISEC Certified Practitioner (ACP)

National-level Hackathon Contributions:

  • Designed & Developed InfoIntellect AI for EY SparkFest Competition 2024
  • Created Android CTF Challenge for DSCI Hackathon 2023 and 2024
  • Innovation & Entrepreneurship Development Cell (IEDC) Project Grant Winner 2020-21

HackTheBox Leaderboard:

  • Ranked 2nd globally in the EY Advanced Security Center (ASC) HackTheBox community
  • Contributed expert insights to HTB's 2M+ user community through regular editorial contributions
  • Successfully completed 13 challenging Prolabs, demonstrating expertise in AI, Blockchain, Cloud Security (AWS, Azure, GCP), Red Teaming and Penetration Testing

Authored 5 CVEs:

  • CVE-2024-27743
  • CVE-2024-27744
  • CVE-2024-27746
  • CVE-2024-27747
  • CVE-2024-28595

CVE Publications:

  • Exploit-DB
  • MITRE
  • PacketStromSecurity

Industry Recognition:

  • Twice recognized by Nokia
  • Honored by Qualtrics
  • Acknowledged by Asia Pacific Network Information Centre (APNIC) and more

Award:

  • Extraordinarie by EY

Certifications

OSCP

OffSec Certified Professional

Verify

CRTO

Certified Red Team Operator

Verify

Microsoft Certified: Cybersecurity Architect Expert

Microsoft Certified: Cybersecurity Architect Expert

Verify

Microsoft Certified: Security, Compliance, and Identity Fundamentals

Microsoft Certified: Azure Security Engineer Associate (AZ-500)

Verify

isc22

(ISC)² Certified in Cybersecurity (CC)

Verify

ISO 27001:2022 LA

IEC/ISO 27001:2022 Lead Auditor (ISMS)

Verify

Microsoft Certified: Security, Compliance, and Identity Fundamentals

Microsoft Certified: Security, Compliance, and Identity Fundamentals

Verify

Microsoft Certified: Azure AI Engineer Associate

Microsoft Certified: Azure AI Engineer Associate

Verify

Microsoft Certified: Azure AI Fundamentals

Microsoft Certified: Azure AI Fundamentals

Verify

Multi-Cloud Red Team Analyst (MCRTA)

Multi-Cloud Red Team Analyst (MCRTA)

Verify

Certified Red Team Infra Developer [CRT-ID]

Certified Red Team Infra Developer (CRT-ID)

Verify

APISEC Certified Practitioner (ACP)

APISEC Certified Practitioner (ACP)

Verify

AWS

AWS Certified Cloud Practitioner

Verify

Projects

Perplexity AI Business Fellowship


Perplexity AI Fellowship Program (Selective Cohort)

Participated in a competitive fellowship focused on AI thought leadership and real-world application.

• Engaged in exclusive fireside chats with AI leaders from NVIDIA, Box, Bloomberg Beta, and others.
• Gained hands-on experience identifying and integrating AI solutions into organizational workflows.
• Collaborated in workshops to design and prototype AI-powered applications.
• Expanded network through a curated community of peers and industry experts.
• Contributed to my company’s strategic AI adoption by applying practical AI concepts.


RedTeam Copilot


RedTeam Copilot - Your AI-powered assistant for red team assessments

RedTeam Copilot is an intelligent assistant designed to support and streamline red teaming workflows. The tool helps security professionals make informed decisions faster by analyzing outputs from various assessment tools and suggesting logical next steps. It aims to enhance efficiency and clarity during offensive security engagements.

Key Features:
• Context-aware recommendations for next actions
• Visual workflow representation and progress tracking
• Unified interface for multiple red team tasks


View More
Exploit Database


Exploit Database - Author

Explore my research and findings published on Exploit-DB by OffSec.


View More
Exploit Database


CVE Published on MITRE

Check out my contributions to the field of cybersecurity, specifically my publication on CVE, hosted on the reputable MITRE Corporation's platform.


CVE-2024-27743
CVE-2024-27744
CVE-2024-27746
CVE-2024-27747
CVE-2024-28595
Wall of Fame

Wall of Fame

Acknowledged by over 20+ bug bounty programs for exceptional contributions


Nokia - HOF

NOKIA

Qualtrics - HOF

QUALTRICS

APNIC - HOF

APNIC
View More
HackTheBox

HackTheBox

Attained the prestigious Elite Hacker Status by solving over 50 labs and demonstrating exceptional skills in completing 13 ProLabs certifications


HackTheBox ProLabs

Cloud Security Specialist (AWS)
HTBCERT-6AD997DE10

HackTheBox ProLabs

Cloud Security Specialist (Azure)
HTBCERT-8B44646CD0

HackTheBox ProLabs

Cloud Security Specialist (Blizzard)
HTBCERT-D18A61F059

HackTheBox ProLabs

Dante - Penetration Tester
HTBCERT-F25DEE47A5

HackTheBox ProLabs

Offshore - Penetration Tester
HTBCERT-3206F5C49E

HackTheBox ProLabs

Cybernetics - Red Team Operator (RTO)
HTBCERT-3F40560A2F

HackTheBox ProLabs

Alchemy - Red Team Operator (RTO)
HTBCERT-9FEB2DCEC4

HackTheBox ProLabs

Genesis - Red Team Operator (RTO)
HTBCERT-1545286A5D

HackTheBox ProLabs

Xen - Red Team Operator (RTO)
HTBCERT-6B32B3D476

HackTheBox ProLabs

Zephyr - Red Team Operator (RTO)
HTBCERT-C965298DDA

HackTheBox ProLabs

Fullhouse - Red Team Operator (RTO)
HTBCERT-65E672B12F

HackTheBox ProLabs

Solar - Red Team Operator (RTO)
HTBCERT-F953E09E23

HackTheBox ProLabs

RastaLabs - Red Team Operator (RTO)
HTBCERT-8F5E9E2B4B
View More
PENTESTERLAB

PentesterLab

Mastering Web Security: Unlocking 14 Active Badges


View More
PENTESTERLAB

Security Training & Conference

Actively engaging in security conferences, I contribute to a dynamic community that fosters knowledge exchange and innovative ideas, thereby playing a role in sculpting the future landscape of cybersecurity.


Nullcon Goa 2023

Nullcon Security Training & Conference - Goa 2023

BSides Goa 2024

BSides Security Training & Conference - Goa 2024

Achievements

Award

Extraordinarie Award by Ernst & Young (EY)

View Achievement

walloffame

Wall of Fame

View Achievement

Testimonials

Shubham helped us improving the security at our site by responsibly reporting a security bug he found. That made our site and our users more secure! Thank you for your kindness, time and effort!