Skip to main content
Viraj MathpatiVM
Open to opportunities

Viraj Mathpati

@virajmathpati

I’m an application security consultant focused on finding and reporting real-world vulnerabilities.

Zimbabwe
Message

What I'm looking for

I’m looking for an AppSec or penetration testing role where I can run thorough assessments, report vulnerabilities responsibly, and keep leveling up—especially across web, APIs, and mobile—within a team that values impact and learning.

I’m a security consultant intern conducting VAPT across web, API, Android, thick client, Chrome extensions, and network infrastructure. I produce detailed security assessment reports and have uncovered critical issues such as RCE, SQL Injection, XSS, IDOR, SSRF, and business logic flaws using both manual and dynamic testing.

I also run active bug bounty hunting, submitting vulnerability reports to HackerOne, Bugcrowd, and self-hosted programs, and I’ve been recognized with Hall of Fame acknowledgements for responsible disclosures from MSI, ACER, and UNICEF. Alongside that, I’m a CTF enthusiast who’s completed 10+ competitions and solved 150+ challenges to continuously improve analytical thinking and exploit effectiveness—skills I bring directly into my pentesting work.

Experience

Work history, roles, and key accomplishments

BU
Current

Bug Bounty Hunter

Bugcrowd

Oct 2025 - Present (9 months)

Submitted vulnerability reports on Bugcrowd, identifying impactful issues including XSS, IDOR, and SSRF vulnerabilities. Received Hall of Fame acknowledgements for responsible vulnerability disclosures.

HA
Current

Bug Bounty Hunter

HackerOne

Oct 2025 - Present (9 months)

Submitted vulnerability reports on HackerOne, identifying impactful issues including XSS, IDOR, and SSRF vulnerabilities. Received Hall of Fame acknowledgements for responsible vulnerability disclosures.

SP
Current

Bug Bounty Hunter

Self-Hosted Programs

Oct 2025 - Present (9 months)

Submitted vulnerability reports to self-hosted programs, identifying impactful issues including XSS, IDOR, and SSRF vulnerabilities. Received Hall of Fame acknowledgements for responsible vulnerability disclosures.

Education

Degrees, certifications, and relevant coursework

MN

MGM College of Engineering, Nanded

Bachelor of Technology

2022 - 2026

Grade: GPA: 6.8

Pursuing a Bachelor of Technology with a GPA of 6.8. Expected graduation is July 2026.

BS

Bhimashankar College, Shiradhon

HSC

Grade: 75%

Completed HSC with 75% in March 2022.

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan