Hacker E-sport Logo

Salam! I’m Zishan Ahamed Thandar — a Cybersecurity Expert and Ethical Hacker with 7+ years of professional experience. I help companies secure their digital infrastructure through real-world penetration testing, bug bounty-style assessments, and custom exploit development.
✔️ Specialized in Web & API Security
✔️ Former Hack The Box Top 10 | TryHackMe Top 5%
✔️ Focused on real threats, not just theoretical CVEs
Whether you're scaling, auditing, or defending, I’ll uncover what others miss — and help you fix it before it matters.

Offerings


Penetration Testing Report for Your System
Ultimate Web Security Checklist eBook
Sponsor via GitHub
Explore My GitHub Projects


Hall of Fames


Google
Oracle
AOL
MailRU
XiaoMi
EC-Council BB
EC-Council CC
Indian Govt
ZOHO
Shaadi.com
GeeksForGeeks
POST.nl
EUR.nl
ViSENZE
FineFriends
Hively




Bug Hunting Acknowledgements


Indian Govt
Netharlands Govt
Bangladesh Govt
EC-Council
GeeksForGeeks
PayTM
shaadi.com
Cambridge University


Qualification


B.Tech (AUE) 2015
HS(12th) 2011
Madhyamik(10th) 2009
Bosch 2013
Bosch 2014
NSDC 2015


Certified Skills


CWL Certified Red Team Analyst - CRTA
CWL Certified Cyber Security Analyst - C3SA
EC-Council Ethical Hacking Essentials
SoloLearn Python
SoloLearn JAVA
SoloLearn PHP
SoloLearn HTML
SoloLearn CSS
SoloLearn JavaScript
SoloLearn jQuery
Codecademy Python2
Codecademy Java
Codecademy Git&Github
Ardent Android


Experience


Bug Bounty Hunter at Hackerone
Security Researcher at Yogosha Strike Force
Freelance Pentesting and Bug Bounty Hunting
CFSS Summer Internship


Projects


Burp Proxy Toggle FF Addon

Free Open Source Lightweight Firefox Pre configgured extension to toggle proxy for burp suite with one click.

Github Source
Firefox Addon

Writeups

HackTheBox, TryHackMe, VulnHub and Other CTF Writeups. Also some Bug Bounty PoC Writeups as Bonus.

GitHub Source
Writeup Link

Pentester Guide

A Basic Guide of Tools, Methodology, Scripts, Certifications, Learning, Labs, Jobs, Entertainment, Freelancing for Pentesters.

Guide Link
Webview

Hackify

Hackify is an open-source bash script to install pentesting wordlists and tools with a single command for Debian-based OS users.

Github Source
Author


Testimonials


“We greatly appreciate your effort in disclosing a security vulnerability responsibly & confirming the fix.”

Sai Prasad, Instamojo

“Thanks for your hard work, Zishan!”

AT&T

“We appreciate you bringing this to our attention.”

Edmodo

“Thank you for bringing the following vulnerability to our attention.”

Kate M Jeary, University of Cambridge


Contact Me




hackerone hackthebox TryHackMe


Resume (CV)