Mukul Joshi
HANDLE: CYB3RFY·Pune, IN
SUBJECT FILE
Cybersecurity researcher and CTF competitor with podium finishes at CTFQuest '26 (1st), H7CTF (2nd, top 0.2%), and DY Patil Offline CTF (2nd). Currently a Research Intern at Fenrir Security, focused on web application penetration testing and AI-driven security tooling. Operates the CYB3RFY YouTube channel — 90+ instructional videos on web exploitation and CTF methodology. Secretary of the ISDF cybersecurity club at AIT Pune; directed the Bypass CTF (542 teams).
EDUCATION
Army Institute of Technology (AIT)
Pune, MaharashtraBachelor of Engineering, Computer Science — Expected June 2027August 2023 — Present
EXPERIENCE
Fenrir Security Pvt Ltd
RemoteCybersecurity Research InternFebruary 2026 — May 2026
- Executed penetration testing on web applications and designed AI-driven custom skill files utilizing prompt engineering, increasing the efficiency of automated vulnerability detection.
- Programmed custom Python and Bash scripts to automate reconnaissance, network enumeration, and payload delivery workflows.
CopperCloud IOTech Pvt Ltd
Pune, MaharashtraIntern, IoT SecurityApril 2025 — July 2025
- Deployed secure IoT architectures for Industry 4.0 applications, fortifying system resilience through hands-on hardware implementation and rigorous security audits.
PROJECTS
Content Creation, Community BuildingAugust 2024 — Present
- Instructed an educational cybersecurity community of 360+ subscribers across 90+ technical videos focused on web exploitation, CTFs, and practical hacking techniques.
Django, JavaScript, GitHubOctober 2025 — December 2025
- Architected a full-stack CTF platform utilizing Django and JavaScript, integrating real-time scoreboards and multi-category challenges to facilitate competitive hacking events.
Offensive Security Research and Tool Development
Python, Bash, IoT HardwareJune 2025 — May 2026
- Authored technical reports to responsibly disclose high-severity vulnerabilities, including an IDOR on a government portal (RTI Online) and credential exposure within a private bank's onboarding flow.
- Engineered custom offensive tooling, including Python and Bash scripts for evasive keylogger PoCs, to simulate real-world execution vectors and conduct behavioral analysis.
- Documented hardware-based IoT vulnerability research by provisioning an ESP32 Marauder to execute 802.11 wireless attacks, assessing network resilience via targeted deauthentication.
TECHNICAL SKILLS
- LANGUAGES
- Python, JavaScript, C/C++, HTML/CSS, Bash, SQL
- SECURITY TOOLS
- Burp Suite, Nmap, Metasploit, Wireshark, SQLmap, Hydra, Gobuster
- SECURITY DOMAINS
- Web Exploitation, Penetration Testing, Digital Forensics, Cryptography, OSINT, Malware Analysis, IoT Security, Prompt Engineering
- DEVELOPER TOOLS
- Git, GitHub, Linux (Kali, Garuda, Ubuntu), Secure Web Development
POSITIONS OF RESPONSIBILITY
Secretary — Information Security and Digital Forensics (ISDF) Club
Army Institute of Technology, PuneJuly 2025 — Present
- Mentored a core committee of 40 juniors managing a community of 1,500+ members; presented technical workshops on forensics, steganography, and web exploitation to 200+ students.
- Directed the organization of Bypass CTF — a 36-hour hybrid competition featuring 542 teams online and a top-30 offline finale.
ACHIEVEMENTS
- PLATFORMS & TEAMS:Top 1% on TryHackMe; active member of Team Tracebash (Top 10 in India on CTFtime).
- PODIUM FINISHES:1st at CTFQuest '26; 2nd at H7CTF (Top 0.2%) and DY Patil Offline CTF; 3rd at Code Intrusion CTF (IIIT Bhagalpur) and SCIT CyberON CTF.
- NOTABLE RANKINGS:5th at Lakshya CTF; 6th at Trinetra CTF (qualified for offline finale at Shiv Nadar University); 11th at Vishwa CTF Mini.
- FULL OPERATIONS LOG →
EXTRACURRICULAR
Instrumentalist and Musician (Flute, Ukulele)
Army Institute of Technology, PuneAugust 2023 — Present
- Performed at intercollegiate music events; collaborated with peers using technical audio workflows to record, layer, and mix musical covers.
cyb3rfy.me