MADHUSUDAN ACHARYA

Security Researcher

+61 406937128 | madhusacharya.588@gmail.com | 0x4d5341 | Sydney, Australia

Summary

Dedicated and analytical Penetration Tester with over 3 years of hands-on experience in security testing and penetration testing across various domains. Possessing a solid understanding of network architectures, operating systems, and a wide array of cybersecurity tools. Proficient in scripting, with a strong command of both Unix and Windows environments. As a communicative and confident professional, I am committed to collaborating with businesses and organizations to identify and rectify security vulnerabilities and weaknesses that may impact digital assets and computer networks. My passion for security stems from my curious and persistent nature, and I continually enhance my skills by engaging with security blogs and CTF write-ups. Seeking a challenging and dynamic role in a forward-thinking organization where I can apply my expertise to strengthen cybersecurity measures and protect sensitive information.

Experience

Penetration Tester

ThreatNix Pvt. Ltd | Lalitpur, Nepal | 08/2021 - 01/2025

  • Developed risk assessment reports to identify threats and vulnerabilities.
  • Conducted IT audit assessments for systems or applications to recommend solutions to mitigate risks.
  • Designed tests and tools to break into security-protected applications and networks to probe for vulnerabilities.
  • Collaborated with external vendors to perform penetration tests on network devices, operating systems and databases.
  • Identified issues, analyzed information and provided solutions to problems.

Cyber Security Intern

ThreatNix Pvt. Ltd | Lalitpur, Nepal | 04/2021 - 08/2021

  • Conducting Vulnerability Assessments: Assisting in identifying security weaknesses in systems, networks, and applications through assessments.
  • Cybersecurity Research: Staying updated on emerging threats and industry best practices to enhance security measures.
  • Collaborated with the Security team to identify and prevent vulnerabilities on specified targets.

Bug Bounty Hunter (Freelancing)

Freelancing | 01/2018 - Present

  • Web Application Security Testing: Proficient in manual and automated techniques for identifying vulnerabilities such as XSS, SQL injection, CSRF, and more.
  • Network Penetration Testing: Skilled in conducting network assessments and identifying weaknesses in infrastructure and systems.
  • Security Tools: Familiarity with tools such as Burp Suite, OWASP ZAP, Nmap, Metasploit, etc.
  • Programming Languages: Proficient in scripting languages like Python, Bash.
  • Vulnerability Research: Constantly researching and staying updated on the latest security threats and attack vectors.

Awards & Acknowledgements

Bug Bounty

  • Hall of Fame recipient from esteemed companies, including Okta, Mastercard, Cloudinary, Intercom, Asana, StatusPage, PureVPN, Credit Karma, Basecamp, and others, for identifying and responsibly disclosing vulnerabilities on their platforms.
  • Acknowledged by the Dutch government for significant contributions to improving web application security.

CTF

  • Secured a top 15 position in the CTF competition organized by Meta in 2022.
  • Invited to an exclusive, invite-only security conference held in Singapore.

Speaker

Gave a talk about CTF at the anniversary event of Pentester Nepal on the topic 'CTF: Hack and Learn,' where I shared my experience of securing a top 15 position globally.

Education

Master of Information Technology in Cyber Security

Macquarie University | Sydney, Australia | 02/2025 - 03/2027

Bachelor of Science in Computer Science and Information Technology

Tribhuvan University | 01/2016 - 01/2020

Skills & Languages

Technical Skills

Algorithms, Bash, Burp Suite, Cybersecurity, Data Structures, Database Management, Metasploit, Nmap, Object-oriented Programming, OWASP, Python, Risk Assessment, SQL, Unix, Windows, Reverse Engineering, Android Pentesting.

Languages

English: Advanced | Nepali: Native | Hindi: Proficient