Introduction

From an early age, I was captivated by computers, spending hours immersed in story-driven video games. Little did I know that my passion for gaming would eventually lead me down an exciting path into ethical hacking.

Hello everyone, I currently work as an SDE 1, contributing to both software development and security testing in Hackrew. Additionally I’m also an editor at Infosec Writeups where we publish awesome write-ups from the world’s best hackers intopics ranging from bug bounties, CTFs, Hack the box walkthroughs, hardware challenges, and real-life encounters During weekends, I team up with colleagues to participate in Capture the Flag (CTF) competitions, pushing our boundaries and refining our problem-solving abilities.

My journey has been filled with challenges, discoveries, and countless “aha” moments that have shaped my career in the cybersecurity space. From my first lines of code in Turbo C++ to uncovering critical vulnerabilities in government websites, every step has reinforced my passion for ethical hacking.

The First Spark: Discovering Programming

It all started in 7th grade when I saw a senior writing something on a mysterious blue screen. (it's the Turbo C++ compiler if you might know). While visiting him to collect new games, he offered me the compiler as well, explaining that I could write programs that would execute my commands. Initially, I was far more interested in the games than in programming.

A few days later, having completed all my games (very obsessed with playing games), I stumbled upon a C and C++ programming book in my house. Seeing code snippets and diagrams intrigued me. I recalled the blue screen of the compiler, so I booted up my laptop and copied a program from the book. It didn’t run, but then I tried a simpler one—printing “Hello World!”—and it worked (Eureka! Eureka!) That tiny success fueled my curiosity, and soon, coding became my new game. Every day after school, I wrote and tested different programs, learning through trial and error.

A Shift to Linux: A New World of Possibilities

In 9th grade, after multiple failed attempts at installing Windows 10 (minimum requirement for few games), I sought help from a cousin’s friend, a computer science student. He introduced me to Linux, specifically Ubuntu. Initially reluctant, I had no choice but to adapt when he installed it alongside Windows.

As a first-time Linux user, I was completely lost. The unfamiliar terminal, different UI, and the concept of booting confused me. However, through experimentation, failures, and small victories, I began to enjoy Ubuntu. On another visit, my cousin’s friend provided me access to programming courses in C, C++, Python, and SQL, opening my eyes to the vast world of programming (my mind was blown away).

As my curiosity grew, I discovered that Ubuntu was just one flavour of many Linux distributions. I began exploring new distros, constantly installing and testing different versions to understand their features. This exploration led me to Kali Linux—the OS for hackers. It was here that my fascination with ethical hacking truly began.

From Curiosity to Ethical Hacking

Naturally, my first experiment was the classic Wi-Fi hacking attempt. Alongside ethical hacking, I was also developing web pages using HTML and experimenting with various cybersecurity tools. However, my interests weren’t limited to just computers. By 11th grade, I had developed a deep passion for physics, and during my 12th grade, I explored research opportunities at IITs.

When JEE results were announced, I searched for physics-related courses and, during the second round of counseling, secured a seat in Engineering Physics at IIT Guwahati. I immediately accepted, knowing it would provide a strong foundation in both science and technology.

The Turning Point: Capture the Flag & Bug Bounty

The COVID-19 pandemic meant online classes, giving me extra time to explore new fields. I sharpened my development skills, learned about machine learning, and deepened my knowledge of ethical hacking. In my second year, I discovered Capture the Flag (CTF) competitions and bug bounty programs, diving into platforms like TryHackMe, PicoCTF, and more.

One of the most pivotal moments in my journey was meeting Sai Krishna, the founder of Hackrew, my senior, and mentor. Under his guidance, I refined both my development and cybersecurity skills. He introduced me to the vast world of cybersecurity, helping me understand the importance of responsible hacking and ethical security practices. He not only provided resources but also encouraged me to participate in CTFs, explore bug bounty programs, and push beyond my limits. He also guided me to look for real-world vulnerabilities, helping me bridge the gap between theoretical knowledge and practical application.

Bug Bounty & Real-World Impact

I dedicated weekends and holidays to finding and reporting security vulnerabilities. One of my biggest discoveries was in a government website, where I identified a PII (Personally Identifiable Information) data leak affecting Andhra Pradesh government employees. This discovery, along with other P1 and P2 vulnerabilities, was recently acknowledged.

Currently, I am ranked in the top 5% (Rank: 94) on Com Olho, proving that persistence and curiosity pay off in the field of cybersecurity.

Recent Milestones & The Road Ahead

A few weeks ago, I had the amazing opportunity to attend NullCon at BITS Goa. There, I attended insightful talks and workshops, interacted with industry leaders and founders, and expanded my network in the cybersecurity community.

Conclusion: The Journey Continues

Looking back, my journey from gaming to coding, from Linux exploration to ethical hacking, and from a CTF player to a Security Researcher has been an incredible learning experience. But this is just the beginning. I aim to continue bug hunting, researching vulnerabilities, and contributing to making cyberspace safer.

To anyone aspiring to be an ethical hacker: Keep experimenting, and never stop learning. The world of cybersecurity is vast, and every discovery you make is a step toward a more secure digital future.