Talks and presentations

In this colloquium talk I presented my research on the security analysis of Virtual Private Network (VPN) applications. The talk focused on the development of MVPNAlyzer, an investigative framework designed to audit the security and privacy of mobile VPNs. I discussed the methodology used to identify common vulnerabilities, potential attack vectors, and effective mitigation strategies to enhance the security posture of VPN applications.

During a guest Lecture for the class CS544 Intro to Cybersecurity, I delivered a tutorial on Server-Side Template Injection (SSTI) and Privilege Escalation. The session provided a hands-on walkthrough of exploiting the Hack The Box (HTB) machine “Perfection,” focusing on leveraging a Ruby-based SSTI vulnerability to gain a reverse shell on the target server.