$ ./init_profile.sh
[ OK ] Loading security credentials...
[ OK ] Verifying HackerOne reports... 3 Critical
[ OK ] TryHackMe rank: #52,327 · Top 3%
[ WARN ] Offensive tools detected. Authorized personnel only.
[ OK ] Access granted. Welcome.
● Available for opportunities

KRITHICK ANDREWS

Red Team Analyst and Bug Bounty Researcher specializing in AI-augmented offensive security. Hands-on expertise across Red Teaming, Network Pentesting, Active Directory Attacks, API Security, LLM Security, and Web Application Testing.

View My Work Contact Me
Krithick Andrews

// 01. about

Who Am I

krithick@kali:~$
whoami
krithick_andrews

cat about.txt

Red Team Analyst and Bug Bounty Researcher
specialising in offensive cybersecurity,
network pentesting, and responsible disclosure.

I build AI-augmented security tools and automation
pipelines using LLM agents and MCP-integrated
CLI systems. Passionate about finding real
vulnerabilities and contributing to a safer internet.

3
Critical CVEs
on HackerOne
12+
Bug Reports
Submitted
Top
3%
Global Rank
TryHackMe
138
Rooms Completed
19 Badges

// 02. experience

Work History

July 2025 – April 2026 · 8 Months
Security Analyst Intern
RedTeam Hacker Academy · Trivandrum, Kerala
ADCD Class Topper
  • Red Teaming — adversary simulation, C2 infrastructure (Sliver, Cobalt Strike), lateral movement, persistence, implant generation for Linux/Windows/macOS
  • Network Pentesting — Nmap scanning, service enumeration, exploitation (MS17-010, SMB, RDP), pivoting, post-exploitation
  • Active Directory — Kerberoasting, AS-REP Roasting, Pass the Hash, LLMNR poisoning, BloodHound enumeration
  • API Security — broken authentication, improper access control, mass assignment, injection attacks on REST and GraphQL APIs
  • LLM Security — prompt injection, jailbreaking, OWASP LLM Top 10
  • Web Application — OWASP Top 10, Burp Suite, XSS, SQLi, SSRF, IDOR, Host Header Injection
  • Built ShadowC2 and AI-Driven SOC Monitoring System as capstone projects
January 2026 – Present
Independent Security Researcher
HackerOne · Remote
  • 12 reports submitted — 3 Critical, 3 High, 2 Medium across enterprise programs
  • Targets: AT&T, Vodafone Oman, Dyson, Udemy, Redox — manual testing + AI-assisted recon
  • Vuln classes: SSRF, Host Header Injection, Internal Infrastructure Disclosure, Azure Telemetry Injection, API Improper Access Control, XSS, SQLi, IDOR
  • Responsible disclosure to Ably ($150 goodwill reward + Hall of Fame), Qwilr, Deutsche Telekom, Whatfix, Springboard
  • Paytm Bug Bounty Certificate — BBCERT #11000000206 (May 2026)

// 03. achievements

Hall of Fame

🔴
HackerOne — 3 Critical Findings
AT&T · Vodafone Oman · Dyson
Infrastructure Disclosure · Azure Telemetry · Session Hijacking
🏆
Paytm Bug Bounty
BBCERT #11000000206
Responsible Security Vulnerability Disclosure · May 2026
💰
Ably — $150 Goodwill Reward
Broken Access Control via WebIntegrationKey
Added to Ably Hall of Fame
🎯
UNI6CTF 1.0 — Rank 51
National Level CTF · 2,105 pts
Team: RooT · April 2026
🥈
2nd Place — RedTeam CTF
Advanced Exploitation · Privilege Escalation
RedTeam Hacker Academy
TryHackMe — Top 3% Globally
Rank #52,327 · 138 Rooms · 19 Badges
tryhackme.com/p/BoTNooB ↗
🎓
ADCD Class Topper
RedTeam Hacker Academy, Trivandrum
Advanced Diploma in Cyber Defense

// 04. projects

Featured Work

01

ShadowC2

AI-Controlled Red Team C2 via Telegram

AI-driven C2 bridging Sliver with Telegram via OpenClaw. Operator sends plain English commands — Shadow AI executes via Python wrapper. Full adversary simulation: initial access → persistence → lateral movement. Implant generation for Linux/Windows/macOS.

PythonSliver C2 OpenClawTelegram APIUbuntu
02

AI-Driven SOC Monitor

Suricata + Wazuh + AI Automation

Full SOC stack with Suricata NIDS and Wazuh SIEM on Ubuntu Server. Centralised threat detection and alert correlation. Automated Telegram alerts via OpenClaw every 60 seconds. Auto iptables/UFW IP blocking on configurable severity threshold.

SuricataWazuh PythonOpenClawiptables
03

ML DoS Mitigation Tool

B.Sc Final Year Project · 2024

DoS/DDoS detection using Random Forest ML algorithm with real-time CustomTkinter GUI for live traffic monitoring. Automatic IP blocking via iptables on anomaly detection. Trained on network traffic datasets.

PythonRandom Forest CustomTkinteriptables

// 05. skills

Tools & Technologies

🔴 Offensive Security
Burp Suite Metasploit Nmap Wireshark Nessus OpenVAS Sliver C2 Cobalt Strike MobSF Frida
🌐 Network Pentesting
NetcatResponder CrackMapExecBloodHound ImpacketHydraHashcat
🔵 Defensive / SOC
Suricata Wazuh SIEM Docker iptables UFW
🤖 AI & Automation
Claude Code OpenClaw n8n MCP Integration LLM Pentesting
💻 Languages & OS
Python Bash SQL Git Kali Linux Ubuntu Arch Linux Windows

// 06. certifications

Certs & Credentials

🛡️
Certified Ethical Hacker (CEH)
Appearing May 2026 · EC-Council
🌐
Network Defense Essentials (NDE)
April 2026 · EC-Council
🔍
SOC Analyst Certification
March 2026
⚔️
Ethical Hacking Essentials (EHE)
March 2026 · EC-Council
🔐
Information Security Fundamentals
March 2025
🐧
Linux & SQL for Cybersecurity
April 2025
🏆
Paytm Bug Bounty Certificate
BBCERT #11000000206 · May 2026

// 07. bug bounty

Vulnerability Disclosures

root@kali:~$ cat /findings/hackerone.log
PlatformTargetSeverityType
HackerOne AT&T 🔴 Critical Internal Infrastructure Disclosure (WildFly Admin Console)
HackerOne Vodafone Oman 🔴 Critical Azure Telemetry Injection
HackerOne Dyson 🔴 Critical Host Header Injection → Session Hijacking
HackerOne Udemy 🟠 Medium API Improper Access Control
Paytm Paytm 🏆 Cert BBCERT #11000000206
Ably Ably 💰 $150 Broken Access Control — Inkeep WebIntegrationKey

// 08. education

Academic Background

🎓
B.Sc Computer Science
PSG College of Arts and Science, Coimbatore
2022 – 2025 · GPA: 7.0/10 · Final Year: ML DoS Attack Mitigation Tool (Python + Random Forest)

// 09. platforms

Active Platforms

🎯
TryHackMe
Top 3% · #52,327 · 138 rooms
🐛
HackerOne
12 reports · 3 Critical
📦
Hack The Box
Active
🕷️
PortSwigger
25 App · 33 Prac · 3 Expert
⚔️
OverTheWire
Active
🛡️
LetsDefend
Active
🔍
Bugcrowd
Active
📊
PentestGrade
Active

// 10. contact

Let's Connect

Open to security research collaborations, bug bounty programs, and red team opportunities.

krithickcyber@gmail.com