Application Security Professional

Achuth V P

Focused on application security.

Application security professional with experience in manual and automated security assessments across the SDLC—secure design review, threat modeling, secure code review, and security testing in Java, Python, and JavaScript stacks. Builds security automation to identify and mitigate issues at scale and partners with engineering on secure development. Background in first-party security research with 15+ critical findings, five CVEs, and Google Hall of Fame recognition.

GitHub LinkedIn Email

Critical findings

CVEs assigned

Security assessments

Automation tools built

Expertise

Threat ModelingSecure Code ReviewSecurity Design ReviewAPI SecuritySAST/DASTAWSGCPCloud SecuritySupply Chain SecurityPythonJavaJavaScriptGoBashOWASP Top 10MITRE ATT&CKSDLC SecurityIAM ConceptsThreat ModelingSecure Code ReviewSecurity Design ReviewAPI SecuritySAST/DASTAWSGCPCloud SecuritySupply Chain SecurityPythonJavaJavaScriptGoBashOWASP Top 10MITRE ATT&CKSDLC SecurityIAM Concepts

Recognition

Highlights

Tap a card for more detail.

Writing

Latest posts

View all

June 4, 2026
Bypassing a 3 layer SVG sanitizer: Stored XSS in Mozilla
The bypass, the parser differential, and the missing write().

Achuth V P

Highlights

Google Bug Bounty

CVE Assignments

Exploit Publications

Dare 2 Compete Semi-Finalist

Latest posts

Bypassing a 3 layer SVG sanitizer: Stored XSS in Mozilla