Vignesh Chandrasekaran — headshot (downscaled, metadata-stripped; not for biometric use)
// layer_0 · kernel

VIGNESH CHANDRASEKARAN

$ Red Team Specialist · Offensive Security Engineer · vCISO Advisor · ICS/SCADA Security

Elite offensive security practitioner with 12+ years spanning red team operations, adversary simulation, nation-state-level threat intelligence and critical-infrastructure security — across the Middle East, Europe and the United States. I translate offensive findings into [ classified ].

uptime12+ yrs offensive security
engagements50+ VAPT · 4 continents
rankHTB Omniscient · Top 10 (<0.1% globally)
recognitionBug Bounty HoF · Google · Twitter · Bugcrowd
status● available · ~20 hrs/wk · remote-global

tip: press /Ctrl+K — or type sudo hire

proof✓ verifiable
Proof, not promises

HackTheBox Omniscient — Top 10 globally (<0.1% of users). Bug Bounty Hall of Fame at Google, Twitter, Bugcrowd. Every claim here is independently verifiable.

rangefull-spectrum
Wire to boardroom

Attacker depth — red team, exploit dev, AD attack chains — plus ICS/SCADA (OT), LLM/AI security and vCISO advisory. Few operators cover both ends.

clearance12+ yrs
Trusted with the sensitive work

Government-adjacent and critical-infrastructure engagements where discretion is the requirement, not a preference. Sensitive scope stays sensitive.

deliveryships code
Outcomes, not a PDF

Open-source tooling with real traction (180★) and findings translated into CFO / board-level financial risk — remediation that survives the readout.

$ echo "you're not hiring a scanner — you're hiring an adversary who can sit in your boardroom."

  1. ROE·01

    Recon before action

    Read, validate, verify before I touch anything. An assumption is just an unconfirmed vulnerability.

  2. ROE·02

    Offense serves the business

    Every finding maps to a decision a board can make and a number a CFO can act on. Risk, not jargon.

  3. ROE·03

    Discretion by default

    High-sensitivity scope stays sensitive. Trust is the actual deliverable — I treat it that way.

  4. ROE·04

    Fix, don't just flag

    I ship tooling and remediation paths, not a report that ages in a drawer. The flaw and the fix.

  5. ROE·05

    Lead from inside the engagement

    I run point with the team in the room — mentoring, aligning, and owning the outcome, not narrating from a slide deck.

  6. ROE·06

    Proof over posture

    Claims are cheap. I bring verifiable rank, disclosed bounties, and shipped code to the table.

agniRust · Windows
EDR, inverted — for the operator.

An open-source EDR simulator for red teamers: study and test against endpoint detection logic in a lab — "turn the blue team's telescope into our own mirror" — so tradecraft can be validated before it ever touches an engagement.

EDR · detection eng · red teamgithub ↗
agentguardPython
Your AI agent has no idea it's been hijacked.

A runtime security fabric for LLM agents. v1 catches step-level prompt-injection mid-execution; v2 adds policy-as-code governance, intent-aware goal-drift detection, behaviour-chain analysis and multi-agent identity tracking — the slow, multi-step hijacks static filters miss.

LLM/AI agent security · OWASP LLMgithub ↗
dvaiTypeScript
A CTF range for AI-specific attacks.

Damn Vulnerable AI — a deliberately vulnerable ecosystem to practice adversarial techniques on real LLMs: logprob side-channels, multi-stage pipeline exploitation, adversarial-suffix optimisation. Zero-infrastructure (player-supplied keys, $0 hosting), anti-cheat hardened.

AI red-team training · adversarial MLgithub ↗
bheeshmaNode.js
See what your npm dependencies actually do.

A runtime dependency-behaviour monitor that watches packages as they execute and gates CI on it — e.g. catching a package that reads ~/.npmrc and POSTs it to an unknown host, scoring it CRITICAL and failing the build. Supply-chain defence at runtime, not just at install.

supply-chain · CI/CD securitygithub ↗
sabha-devsecJavaScript
Scan data → boardroom decision.

A strategic cyber-risk intelligence platform that turns raw scan data into executive-ready risk: CVE/EPSS/KEV/MITRE ATT&CK enrichment, attack-graph analysis, remediation prioritisation, compliance mapping and CFO/CISO board reports — 100% client-side, AES-256 encrypted, zero backend.

vCISO · risk quantificationgithub ↗
chanakya-opsecresearch
How operational security actually fails.

A research framework for understanding how OPSEC breaks down through emergent signal correlation across abstraction layers — deliberately not a checklist or compliance tool. For research-grade threat modelling, with a clear lawful-use scope.

OPSEC research · threat modellinggithub ↗
mlastgPython · standard
A testable security standard for ML & LLMs.

An open-source verification standard and testing guide for ML/LLM systems — inspired by OWASP MASTG and aligned to MITRE ATLAS, NIST AI RMF and OWASP AI Exchange. Pairs L1/L2 verifiable controls (MLASVS) with step-by-step test cases and executable Python harnesses (ART, SecML).

ML/LLM AppSec · MITRE ATLAS · NIST AI RMFgithub ↗
vuln-corpusPython · dataset
23 real exploits, made queryable.

A structured, machine-readable corpus of 23 real-world vulnerabilities — metadata, CWE, root cause, exploit primitive and discovery methodology — distilled from public PoC research (1 CVE assigned). Built for defensive and educational use: query, cross-reference and learn from how flaws were actually found.

vuln research · dataset · CWEgithub ↗

// stack — click a layer to expand

  1. 2023 — present

    Independent Security Consultant & Red Team Advisor

    Self-Employed · Remote, Global
    • Offensive advisory, adversary simulation and vCISO-level guidance across high-sensitivity engagements (clients confidential by agreement).
    • APT-focused operations: threat-actor emulation, C2 infrastructure design, post-compromise analysis.
    • Pioneered LLM / AI security research — prompt-injection vectors and adversarial misuse across model deployments.
    • Built sabha-devsec, bheeshma, and chanakya-opsec — open-source security tooling.
  2. 2022 — 2023

    Information Security Manager

    Saptang Labs · Chennai, India
    • Led end-to-end security strategy: red team engagements, client assessments, internal SecOps.
    • Built structured red-team methodologies aligned to real-world adversary TTPs; led a team of analysts.
  3. 2021 — 2022

    Senior Security Engineer

    Freshworks · Chennai, India
    • AppSec assessments, network pentesting and security architecture reviews across enterprise SaaS.
    • Advised senior leadership on threat landscape, privacy risk and posture roadmaps.
  4. 2020 — 2021

    Senior Security Advisor confidential

    Government-Adjacent Clients · Remote
    • [ ████████ disclosure restricted ████████ ]
    • APT simulation, threat-actor emulation, adversary-in-the-middle operations.
  5. 2019 — 2020

    Chief Hacking Officer

    Precise Thinking TCT · Amman, Jordan
    • Led offensive security & pentest programs across enterprise and government clients; owned budget and IR planning.
  6. 2014 — 2019

    Information Security Engineer — Global Consulting

    Independent / Freelance · Global
    • 50+ VAPT engagements across the Middle East, Europe and the USA.
    • Central Bank of Jordan · RAK EGA (UAE Gov) · AL Rostamani Exchange (Dubai) · Municipal Gov (USA) · Critical-infrastructure SCADA (Pacific NW, USA).
    • Validator & challenge author on HackTheBox, Bugcrowd and Yogosha. PCI-DSS QSA audits.

// core_competencies

Red Team OpsAdversary SimulationVAPT — Net/Web/Mobile/Cloud Exploit DevelopmentActive Directory Attack ChainsPurple Teaming APT InvestigationThreat IntelligenceOSINTIncident Response Malware AnalysisICS / SCADA (OT)LLM / AI Security Supply-Chain SecurityMobile (Android/iOS)PCI-DSS QSA Hybrid Cloud SecurityvCISO AdvisorySecurity Architecture

// languages

Python.NETJavaScript / Node.jsBash / ShellLanguage-agnostic tooling

// frameworks & standards

MITRE ATT&CKATT&CK for ICSOWASP Top 10 NIST SP 800-53NIST CSFCIS BenchmarksPCI-DSS (QSA) ISA/IEC 62443TTPs / adversary emulationRed Team infra & C2 CI/CD & supply-chain securityAD / Azure AD attack chains

// certifications

ISA/IEC 62443 — ICS/SCADA Security ISA/IEC 62443 — Cybersecurity Risk Assessment ECSA — EC-Council Security Analyst CCNA — Cisco
Medium — Security Blog

Security research articles and practitioner guides.

bbinfosec ↗
in/ LinkedIn

4,400+ followers — an active voice in offensive security & threat research.

connect ↗
Stack Exchange

Active contributor across the information-security community.

Active research

LLM/AI red-teaming, runtime supply-chain abuse, OPSEC failure correlation.

// talks · field research

THREAT CON 2019
Hacking Human Lives via Body Area Network

Research into the security of Body Area Networks — the wireless mesh of wearable and implantable medical devices around the human body — and how weaknesses turn a connectivity convenience into a life-safety attack surface with physical, human consequences.

focus: medical / IoT device security · wireless protocol attack surface · safety-critical threat modeling

BalCCon 2k18
Hybrid Cloud Seeding — Hacking Microsoft Hybrid Cloud Infrastructure

A red-team approach to Microsoft Azure hybrid-cloud environments: enumerating and pivoting across Azure AD and on-premises Active Directory through federated services — correlating cloud and on-prem identities (users, groups, admin roles) to target privileged accounts and move laterally between the two.

focus: Azure AD / hybrid-cloud red teaming · Active Directory attack chains · federated identity · PowerShell enumeration · cloud↔on-prem pivoting

// or drop a message