Bhagavan Bollina, aka xcriminal, a hacker and security aficionado. I’m currently pursuing my masters of engineering in Uinversity of Maryland, College Park. I’m a passionate security researcher who loves hacking and breaking things on the cloud. Parallelly I dabble in web, network and mobile security. I was a core member of the cloud security R&D and testing team at Appsecco. My enthusiasm for cloud security has led me to do multiple community speaking engagements at null meetups and conferences.

I love writing and teaching which I do through my various blog posts and internal sessions with various teams. I do enjoy cracking cloud CTFs, finding bugs with popular software online and reporting them via responsible disclosure and trying out new services in the cloud to see if they have holes in them.

When not building and breaking stuff in the cloud, I enjoy bug bounty hacking and CTFs. I love training my dog as well in my spare time, but the dog weirdly seems to not like cloud security.

Achievements

• Won the Pentesters Academy’s labs for winning the Cloud Security Sprint challenge, 2022.
• Secured 8th Rank in Payatu all India hiring CTF challenge, 2021
• Ranked all-time Top 1000 Security Researchers & MVP Q3 (2020) in Bugcrowd.
• Worked as Academic Affairs Secretary at BML Munjal University, 2020-2021.
• Received Appreciation from United Nations Information Security Team for ethically reporting a vulnerability in their domain, 2020.
• Responsibly reported bugs in applications more than 100+ organazations and recieved their monetary and hall of fame.

Publications

• “Offensive Web Application Security Framework.” Design Engineering. 0011-9342 (2021):17334-17342.
• “SQL -Mode, Detection & Prevention.” International Journal of All Research Education and Scientific Methods (IJARESM) 10.2455-6211(2022).
• “An Analysis of Cloud Security.” International Research Journal of Engineering and Technology (IRJET) 9.2395-0056(2022).

Certifications

• Cisco Cyber Security Fundamentals
• Certified Ethical Hacker(CEH V11)
• Google Technical Fundamentals
• AWS Certified Solutions Architect - Associate
• Certified Azure Red Teaming Professional(CARTP)
• eLearnSecurity Web Application Penetration Tester Extreme (eWPTXv2)
• Certified Red Teaming Professional (CRTP)
• Certified Cloud Security Knowledge (CCSK)

Online