-
CRED:
- Security First Company
- Payments industry
- Great talent pool - Soumyadeep Sir
-
IIITA
- Sem2 MITM Attacks, Intercepting traffic
- 172.31.2.38 server venky exploit and remediation suggestions
- ERP report:
- SQLi
- Logging and Alerting
- Firewall
- phpmyadmin
- IDOR
- Broken Authorization and Authentication
- ssh
- College net wide ip blocks for scans etc.
-
Curefit:
- Image signing recommended
- WAF Dual Trust recommended
- IMDSv2 migration recommended
- IRSA on Voyager Pods Recommended
- Github Conman Separation of Duties Recommended
- mTLS on Istio Recommended
- S3 Auditing revealed rogue AWS Account Access
- Coralogix WAF sync time monitoring
- IP Block Automation
- Secret Scanning
- Access Analyzer
- Vulnerability Management System Voyager Dependabot
- Semgrep and other tooling Auditing
- Prometheus monitoring for inactive k8s gateways
- Egress blocking on Istio and C2 ideas along with detections
- Shifting from Slack alerts to Coralogix SIEM alerts
-
HR Questions:
- Tell me a situation where you went beyond your role out of ownership.
- Curefit Blocking pods with no valids pod ids, metrics for culn management…internal pt shit
- ERP remediations
- Venky server
- Team Collaboration - Issues
- Tell me a situation where you went beyond your role out of ownership.