About

Whoami

Hey, I’m Siddhesh — a penetration tester with nearly four years of hands-on experience in breaking (and occasionally securing) things. I’ve also spent time in Application Security and Threat Hunting, which basically means I enjoy chasing bugs across different layers of a stack.

This blog is my digital brain dump — a place where I post writeups of machines, CTF challenges, random scripts, and other odds and ends I find interesting or useful.

In the coming weeks, I’ll be tackling the OSWE, PNPT, and OSWP, and maybe squeezing in the CPTS too. I have a soft spot for web vulnerabilities and usually reach for Python when I need to script something quickly.

If you’re into that sort of thing, you’ll probably feel right at home here.