Security Researcher at Sonatype
M.S. in Computer Science, Georgia Tech
B.S. in Software Engineering, Drexel University
Endorsed an Exceptional Talent (‘a recognized leader’) by the British Government, Akshay aka
Ax is a Security Researcher and Engineer who holds passion for perpetual learning. In his spare time, he loves exploiting vulnerabilities, ethically and educating a wide range of audiences.
Ax’s expertise includes software development, web application penetration testing and research. Through responsible disclosure, he has previously exposed serious bugs and security vulnerabilities affecting national & global organizations like P.F. Chang’s, Planet Fitness, Comcast/Arris, Ellucian and the popular restaurant chain, Buca di Beppo.
In early 2018, Akshay helped prevent a massive data breach at Georgia Tech by going public with a serious flaw which was left unpatched for over a year. He hence earned himself a place on Tech’s Vulnerability Reporters “hall of fame” page.
To consult Akshay for your next big security project or pen-testing needs, drop him a note here.
Geolocation `Attack`: Entrapping your anonymous opponent online
How to misuse the Geolocation API to strip your online opponent’s anonymity. And, how to save yourself from it.
2018.11.24 / 3min read. Read More
Technology has a bias — but it’s not the kind most talk about
Exploring left and right biases on a `neutral` web
2018.11.21 / 9min read. Read More
My UK “Exceptional Talent” Endorsement Journey — a Guide for Digital Technologists
How I earned UK’s prestigious Exceptional Talent endorsement for Recognized Leaders
2018.11.10 / 8min read. Read More
A Lesson in Why “Security by Press Release” Is Detrimental
Separating facts from media hype in cybersecurity
2018.11.02 / 3min read. Read More
The STEM Epidemic—pressure on women and minorities
And why is the focus exclusively on STEM?
2018.10.17 / 15min read. Read More
Buca di Beppo - Italian Fine Dining with a Bug
Spaghetti, Meatballs, Marinara and Cross-Site Scripting (XSS)
2018.06.25 / 4min read. Read More
Planet Fitness: a lazy coder’s way of verifying premium access
“Planet Fitness members enjoy discounts and special deals from our partners,” reads their purple-yellow website. And, typically those…
2018.06.22 / 3min read. Read More
Open Redirects & Security Done Right!
Everything is vulnerable, as they say. The trend seems to be getting worse with the ever increasing number of connected “smart” devices.
2018.06.19 / 3min read. Read More
Prevent Domain Takeovers — Audit `Email Alias` policy today!
If you are an IT administrator of a major organization — academic or industrial, chances are you have come across enforcing an email policy…
2018.06.12 / 3min read. Read More