Sharez M. Shaikh – Online Resume

Sharez M. Shaikh
Email
[email protected] Phone
+919768321394 LinkedIn
Sharez Shaikh Location
Mumbai Hack The Box
WhoDatShark 

Offensive Security Engineer with a strong interest in Application Security, Penetration Testing and Red Teaming. Active learner who is constantly improving himself with the help of CTFs and platforms like Hack The Box and Try Hack Me.

Skills

Infrastructure SecurityEnumerating Windows and Linux systems to identify misconfigurations and vulnerabilities that enable unauthorized access, privilege escalation, and lateral movement.
Web Application SecurityIdentify and assess application-layer vulnerabilities, with emphasis on OWASP Top 10 risks, through asset mapping and security testing.
Network Traffic AnalysisCapture and analyze network packets to monitor protocols, detect anomalies, and identify potential indicators of compromise (IoCs).
OSINTCollect actionable intelligence on individuals and organizations using social media, forums, breached datasets, and web archives.
Active Directory SecurityConduct enumeration and exploitation of Active Directory environments using tools like BloodHound, Netexec, and Impacket.

Trainings and Certifications

Certified Red Team Professional (CRTP)⁠
Google Cybersecurity⁠
Jr Penetration Tester (TryHackMe)⁠

Professional Experience

KPMG Assurance and Consulting Services LLP

Security Analyst

07/2025 – 01/2026

•Conducted penetration testing for a leading telecom client, uncovering outdated protocols, insecure file upload, and SSRF vulnerabilities enabling timely remediation and significantly reducing the external attack surface.

•Performed android application security assessment for a major banking client, identifying critical broken access control flaws that could have led to unauthorized account access and potential large scale exploitation.

Security Analyst Intern

01/2025 – 07/2025

•Completed expert-led trainings on real-world offensive security techniques, including application security and red teaming, and applied the acquired skills while shadowing live client engagements.

•Executed external penetration testing across internet-facing assets, used DNS history and targeted dorking to find orphaned subdomains, outdated services, and leaked files.

V-Patrol AI Pvt. Ltd.

Penetration Testing Intern⁠

04/2024 – 11/2024

•Conducted end-to-end vulnerability assessments across client applications and networks, identifying attack vectors and recommending prioritized fixes to reduce overall cyber risk.

•Executed penetration tests to validate and exploit weaknesses, demonstrating business impact and guiding clients toward secure configurations.

Positions of Responsibility

Co-Founder and Chapter Leader⁠

OWASP TCET

06/2023 – 07/2025

•Established the OWASP TCET Student Chapter, driving a cybersecurity culture via hands-on sessions, competitions, and peer-learning activities.

•Organised a successful Capture the Flag (CTF) event, managing 100+ participants, ensuring seamless planning, execution, and overall event management. 

Achievements

•10th place in the Amazon AppSec CTF 2025 (APAC)⁠

•Achieved Platinum Rank in HacktheBox Season 8⁠.

•6th place in Pentathon 2025, organised by NCIIPC, AICTE and MoE in April-May 2025.

•2nd Runner up in KJSCE CTF 2.0 organized by KJSCE Codecell in January 2025.⁠

•19th Place in Dragos CTF 2024 organized by Dragos Inc in December 2024.⁠

Education

BE Computer Science and Engineering (Cybersecurity)

Thakur College of Engineering and Technology

2021 – 2025

CGPA: 9.35