VYOM
NAGPAL

// THE WILD EYE
SCROLL TO INFILTRATE
// SECURITY RESEARCH
BUG BOUNTY & VDP
Vulnerabilities responsibly disclosed to organisations, CERT-In, and via private VDPs & bug bounty programs.
• 3 CRITICAL • 4 HIGH • 1 INFO • 4 PENDING 12 TOTAL DISCLOSED
BB_AND_VDP_LOG.txt
# TARGET / ASSET VULNERABILITY TYPE SEVERITY
3
TRON DAO
HackerOne
Cryptographic Weakness
Weak Pseudo-Random Number Generator (PRNG)
WEB APP CRITICAL
5
ONGC
CERT-In Disclosure
Security Misconfiguration
WEB APP HIGH
6
TRON DAO
HackerOne
Cross-Site Request Forgery (CSRF)
WEB APP HIGH
8
The Fork
Bugcrowd
Server Security Misconfiguration
APK INFO
9
Meta
Bug Bounty
WhatsApp
Locked Chats
Authentication Flow Inconsistency
DESKTOP APP PENDING
10
Foundation
VDP
Security Misconfiguration
WEB APP PENDING
11
[ UNDISCLOSED ]
Private Program · NDA
[ CONFIDENTIAL ]
Vulnerability details withheld — active NDA in effect
REDACTED PENDING
12
[ UNDISCLOSED ]
Private Program · NDA
[ CONFIDENTIAL ]
Cannot disclose — responsible disclosure timeline active
REDACTED PENDING
// ABOUT
ABOUT
IDENTITY_SCAN.sh
root@wildeye:~$ whoami --verbose
Name : Vyom Nagpal
Handle : TheWildEye
Role : B.Tech - M.Tech CSE (Cybersecurity)
Uni : National Forensic Sciences University
CGPA : 8.03
Email : vyomnagpal7@gmail.com
Location : Ahmedabad, Gujarat, India

root@wildeye:~$ cat mission.txt
Cybersecurity enthusiast developing
expertise in Recon, OSINT, VA/PT.
Ex-Intern @ ShadowFox. Building
offensive security tools for
real-world use.

root@wildeye:~$ locate vyom
FINALIST
HACKIITK 2026 — IIT KANPUR
National Level Hackathon · 9,000+ Participants
FINALIST
BFSI NATIONAL HACKATHON 2026
Data Security Council of India
0
CYBERSECURITY TOOLS BUILT
Offensive recon & exploitation tools deployed across 1000+ targets
0
VULNERABILITIES DISCLOSED
Critical, High & Info across web, mobile & infrastructure
0
TARGETS TESTED & COVERED
Attack surface recon across live web & mobile applications
#5
CTF MVP RANK — NFSU 2023
700+ Participants · National Forensic Sciences University
#7
CTF MVP RANK — NFSU 2022
500+ Participants · National Forensic Sciences University
// EXPERIENCE
EXPERIENCE
INDEPENDENT SECURITY RESEARCHER
Offensive Security · Bug Bounty · VDP
2025 - PRESENT
► Hunting attack surfaces across web & mobile applications via bug bounty programs and private VDPs — exploiting authentication bypasses, business logic flaws, IDOR and access control weaknesses to achieve responsible disclosure.
► Performing hands-on web app & mobile app penetration testing — targeting real-world vectors including XSS, SQLi, API abuse, insecure data storage and session hijacking across live targets.
► Developing automated offensive security tools for recon, exploitation and vulnerability scanning — deployed across 1000+ targets; producing case studies on discovered attack chains.
Web App Testing Mobile App Testing Bug Bounty VDP Recon
CYBERSECURITY ANALYST INTERN
ShadowFox
JUNE 2025 - JULY 2025
► Performed port scanning, service enumeration & directory brute-forcing across 6+ test targets to map attack surfaces and identify exposed credentials via network traffic analysis.
► Conducted VA/PT across web applications & Linux/Windows systems - identified 6+ vulnerabilities including credential exposure, weak hashing and privilege escalation.
VA/PT Port Scanning Network Analysis Linux
FREELANCE VIDEO EDITOR & GRAPHIC DESIGNER
Self-Employed
2020 - PRESENT
► Collaborated with top-tier content creators from S8UL Esports, one of India's leading esports organisations.
S8UL Esports Video Editing Graphic Design
// SKILLS
SKILLS
PYTHON
Primary Language & Tool Development
AutomationExploit WritingWeb ScrapingAPI Scripting
OSINT & RECON
Passive Recon & Attack Surface Mapping
DNS EnumEmail HarvestingWHOISFootprinting
VA/PT & WEB SECURITY
Web & Mobile App Penetration Testing
Burp SuiteOWASP ZAPMobSFXSSSQLiIDOR
NETWORK ANALYSIS
Traffic Analysis & Service Enumeration
NmapWiresharkPort ScanningPCAPMetasploit
LINUX & SYSTEM SECURITY
Offensive OS & System Hardening
Kali LinuxShell ScriptingHardeningPriv Escalation
DIGITAL FORENSICS
Evidence Analysis & Legal Compliance
FTK ImagerChain of CustodyBSA S.63IEA S.65B
DATABASES
Querying, Injection & Schema Analysis
MySQLOracle SQLSQL InjectionSchema Enum
SCRIPTING & DEVELOPMENT
Multi-language Dev & Automation
JavaScriptC / C++ / JavaGit / GitHubNode.js
// PROJECTS
PROJECTS
> [!] SYSTEM INSTRUCTION: Click on operation modules to infiltrate source repositories...
EVIDENTIAL
VIEW REPO →
Chain of custody with SHA-256 hashing, RBAC & session-based auth. Automated file registration & integrity verification — ~35% faster validation. Aligned with BSA Section 63 & IEA Section 65B compliance.
PythonSHA-256ForensicsRBAC
FORENSICS
QUANTUMSHIELD
VIEW REPO →
Post-Quantum Secure OpenID Connect using KEMTLS with ML-KEM-768. HACKIITK 2026 Finalist among 9000+ participants. Achieved ~44% faster handshake via ML-DSA-65 JWT signing & SHA3-256 hashing.
PythonKEMTLSML-KEM-768Post-Quantum
HACKATHON
THEWILDEYE FW
VIEW REPO →
Unified Recon & OSINT Framework — WAF detection, WHOIS/DNS/SSL recon, email crawling & directory brute-forcing. Deployed across 1000+ targets, reducing manual recon effort by ~50%.
PythonOSINTWAF DetectionRecon
FLAGSHIP
Automated WAF detection using active HTTP probing, header fingerprinting and response analysis to identify and classify deployed firewall products across targets.
PythonHTTP ProbingDNSTLS
TOOL
TIGERHUNT
VIEW REPO →
Multithreaded directory brute-forcer with HTTP methods & redirect handling, systematic reporting and interactive UI for efficient web reconnaissance automation.
PythonMultithreadedHTTPWeb Recon
TOOL
// ACHIEVEMENTS
ACHIEVEMENTS
🚀
FINALIST
HACKIITK 2026 — IIT KANPUR
National Level Hackathon · 9,000+ Participants · Post-Quantum Security Track
2026
🏆
FINALIST
BFSI NATIONAL HACKATHON 2026
Data Security Council of India · Competed against top security teams nationwide
2026
RANK #5
NFSU CTF 2023 — MVP RANK
700+ Participants · National Forensic Sciences University · Top 10 MVP
CTF
🥈
RANK #7
NFSU CTF 2022 — MVP RANK
500+ Participants · National Forensic Sciences University · Top 10 MVP
CTF
🐛
10+ BUGS
VULNERABILITIES RESPONSIBLY DISCLOSED
Critical & High severity bugs across ONGC, Samsung, TRON DAO, Pet Pooja & more
BUG BOUNTY
CTF_HISTORY.log
COMPETITION YEAR MVP RANK PARTICIPANTS STATUS
NFSU CTF - National Forensic Sciences University 2023 #5 700+ ● TOP 10 MVP
NFSU CTF - National Forensic Sciences University 2022 #7 500+ ● TOP 10 MVP
// CERTIFICATIONS
CREDENTIALS
🎍
arcX
Foundation Level Threat Intelligence Analyst
arcX · June 2025
🎍
Skillfront
ISO/IEC 27001:2022 Information Security Associate
Skillfront · June 2025
🎍
Cisco
Cyber Threat Management
Cisco · May 2025
🎍
Reliance
Cyber Security Associate
Reliance Foundation
🎍
ISEA
Certified Cyber Hygiene Practitioner
ISEA · Govt. of India
🎍
EC-Council
SQL Injection Attacks
EC-Council
🎍
EC-Council
Intro to Dark Web, Anonymity & Cryptocurrency
EC-Council
// CONTACT
CONTACT
SECURE_CHANNEL.sh
root@wildeye:~$ netstat --open-ports

LOCATION : Ahmedabad, Gujarat, India
DOMAIN : vyomnagpal.in

root@wildeye:~$ echo "Open to security research, CTF teams, bug bounty & internship opportunities"