Karthik UJ

I am Karthik UJ

I work as a Software Engineer developing security tools and researching new trendy vulnerabilities. In my own time I create or contribute to open-source security tools, solve CTFs or learn something new.
wave

─ Recently

Wassup Karthik?

Currently I am working on my open-source tool Sasori, it is a dynamic web crawler built on top of Google's Puppeteer library. It supports authentication, integrates with proxy servers like Burp Suite or Zaproxy for easy bug bounty automation.

Goals 2024

  • Release Sasori v0.1.0
  • Become pwn.college green belt
  • Become an OSCP
  • Become a certified scuba diver

Skills

HTML5

CSS3

PYTHON3

SHELL SCRIPTING

INFORMATION SECURITY

JAVASCRIPT

LINUX

BOOTSTRAP

SQL

C++

GIT

PHP

Experience

Harvard University

I got two Letters of Appreciation (LOA) from the Chief Information Security Officer (CISO) of Harvard University for finding and reporting vulnerabilities in their network.

Astra Security

I am currently working here at Astra Security as an SDE. All in all, an awesome place to work at.

British Broadcasting Corporation (BBC)

I got Hall of Fame on BBC's website for finding and reporting security vulnerabilities on their website.

Nykaa

I got Letter of Appreciation from the security team of Nykaa for finding and reporting security vulnerabilities on their website.

Works

7uring

Sasori is a dynamic web crawler powered by Puppeteer, designed for lightning-fast endpoint discovery. It supports authentication, proxy server integration and can be customized to meet your specific use case. Made using JavaScript, install it using npm install -g sasori-crawl.

7uring

7uring is a cryptography tool which can encode/decode, hash/crack-hash, cipher/decipher in many common algorithms. What makes it unique is it can check online rainbow tables to crack hashes besides using a dictionary attack. Made using Python3, install it using pip install 7uring.