Here you will found information regarding my skills and work experience
  • NAME: Avinash Kumar Thapa
  • DOB: 04 December 1992
  • EMAIL: avinash@exploitstube.com
  • B.TECH(ECE): Kurushetra University


An enthusiastic security researcher who is passionate about web application security testing and exploit writing. Certified with internationally reputed certifications like OSCP and OSCE.
Over the years, my roles are upgraded from Information security Analyst to Security Consultant where I am responsible to execute the projects which includes web application security testing,
infrastructure security testing, mobile appsec etc.

I have worked with major clients across the multiple industries including banking, insurance, web development, telecommunication etc. I have great exposure with internatioanl clients
mainly in Middle east for information security projects. Along with the execution of projects, I have deliver trainings regarding information security both nationally and internationally.

Skillset Details

  • Web Hacking
  • Bug Hunting
  • Exploit Writting
  • Trainings
  • Mobile Application security testing
  • Source Code Review

Technical Expertise

  • Exploit Writing
  • Network Security
  • Operating System Security
  • Database Security
  • Web Application Security
  • Mobile Application Security
  • Digital Forensics
  • Mobile Security

Industry Experience

Contains the details for whom I worked for.

July 2014 - April 2016

Information Security Analyst - Network Intelligence India Pvt. Ltd.

I have the responsibility to execute the projects like infrastructure security, application security, mobile appsec etc. Also, I have delivered trainings regarding information security to various clients.

April 2016 - January 2017

Senior Security Analyst - Network Intelligence India Pvt. Ltd.

Along with the execution of information security projects, I have responsibility to mentor my junior colleagues.

Jan 2016 - Present

Information Security Consultant - NotSoSecure

Professional Certifications

Details of the certification that I have earned.

September 2016

Offensive Security Certified Professional (OSCE)-OS-18699 - Offensive Security

January 2016

Offensive Security Certified Professional (OSCP)-OS-18699 - Offensive Security

April 2014

Certified Professional Hacker (CPHNxG) - Institute of Information Security

April 2014

Certified Information Security Consultant (CISC) - Institute of Information Security.

April 2014

Certified Professional Forensics Analyst (CPFA) - Institute of Information Security.

Information Security Projects Handled

Below are the details of overall projects that I have covered in past two years.
  • Infrastructure Security Testing
  • Web Application Security Testing
  • Mobile Application Security Testing
  • Auditing for network devices
  • Source Code Review
  • ATM Application Security Assessment
  • Thick Client Testing
  • Risk based testing for business logics

Corporate Trainings Details

I have provided to various national and international client and below are the details.
  • Penetration Testing with Kali Linux (Overseas trainings in Kuwait)
  • Certified Information Security Consultant ( For Governments Clients)
  • Assembly Language and Advance Exploit Development trainings.