BIBEK DHUNGANA

Experienced Penetration Tester with a strong background in assessing Web Applications, Mobile Applications, APIs and Network Infrastructure. Passionate about Open-Source Intelligence (OSINT), Red Teaming, and Corporate Security Consulting.

SKILLS

Penetration TestingWeb Application SecurityMobile Application SecurityAPI SecurityNetwork SecurityOSINTActive Directory Penetration TestingSocial EngineeringCloud Security AssessmentsDark Web MonitoringRed TeamingVulnerability AssessmentBash ScriptingPython ScriptingTechnical Report WritingTechnical DebriefingLeadershipTeam BuildingProject Management

PROFESSIONAL EXPERIENCE

Senior Offensive Security Engineer @ Cryptogen Nepal Pvt Ltd

Oct 2024 - April 2025

  • Lead and execute complex offensive security assessments
  • Stay up-to-date with emerging threats, vulnerabilities, and industry trends
  • Document and record findings and produce comprehensive reports
  • Research to uplift the penetration testing experience to the red team operations
  • Developed internal and personal tools using React, Next.js, and Tailwind CSS

Offensive Security Lead @ Cryptogen Nepal Pvt Ltd

Feb 2024 - Oct 2024

  • Lead and execute complex offensive security assessments
  • Provide technical leadership and guidance to the offensive security team
  • Oversee the planning and execution of multiple concurrent offensive security projects
  • Evaluate and implement new offensive security technologies and methodologies

Security Analyst @ Cryptogen Nepal Pvt Ltd

July 2021 - Jan 2024

  • Demonstrating technical expertise in leading complex security assessments
  • Performing External & Internal Web, Mobile Applications, APIs & Network Infrastructure
  • Following the industry standard frameworks like OWASP, PTES & NIST for the assessments
  • Technical review of the vulnerability assessment and penetration testing reports

Security Analyst Intern/Trainee @ Cryptogen Nepal Pvt Ltd

December 2021 - June 2022

  • Research about different Security Assessment like VAPT, Red Teaming, Server Hardening
  • Performing Vulnerability assessment and Penetration Testing
  • Technical report writing, research on various loopholes and technologies
  • Red Teaming TTPs Research

CERTIFICATIONS

Certified Red Team Professional (CRTP)

Pentester Academy

Certified Ethical Hacker (Practical)

EC-Council

NSE 1 & 2 Network Security Associate

Fortinet

CNSS Certified Network Specialist

CNSS

CCNA R&S Bootcamp

Cisco

ACCOMPLISHMENTS

Acknowledged by Nokia, Dutch government, Iflix & ServiceNow for identifying & ethically reporting security vulnerabilities in their products.

EDUCATION

Bachelor's in Information Management

Asian School of Management & Technology

+2 Management Faculty

Ex Service Man Higher Secondary School

School Leaving Certificate

Sayapatri Secondary Boarding School

CONTACT

dhunganabibek28@gmail.comlinkedin.com/in/bibek-dhungana-b8862a165github.com/bibek-dhungana