root@shreyas
  • ./about
  • ./experience
  • ./projects
  • ./skills
  • ./findings
  • ./blog
  • hire_me()
./about./experience./projects./skills./findings./blog
./resumehire_me()
Blog

Insights & Research

Security research, penetration testing tutorials, and real-world case studies from the field.

OWASP

OWASP Top 10 2025 — What Changed and Why It Matters

The OWASP Top 10 2025 brings significant restructuring. Supply chain failures, server-side request forgery, and cryptographic issues are now front and center. Here's what every AppSec professional needs to know.

May 1, 20258 min read
OWASPWeb SecurityApplication Security
Read article
Tutorials

A Beginner's Guide to Burp Suite for Web App Pentesting

Burp Suite is the industry-standard tool for web application penetration testing. Learn how to set it up, intercept traffic, and find your first vulnerability — step by step.

Apr 15, 202512 min read
Burp SuitePenetration TestingTutorial
Read article
Web Security

How I Found an IDOR in a Banking Application

A real-world case study of discovering an Insecure Direct Object Reference (IDOR) vulnerability in a banking web application during a professional DAST assessment at Accenture.

Apr 28, 20256 min read
IDORBanking SecurityCase Study
Read article
Shreyas K U
© 2026 — Application Security Professional
HomeProjectsBlogContact