Shashank Mudgal

Designed and architected a comprehensive, security-first cloud infrastructure on AWS for a client engagement. The architecture emphasized compliance, auditability, and defense-in-depth principles across all layers.

KEY CONTRIBUTIONS
• Architected a multi-tier VPC with public, private, and isolated subnets, security groups, and NACLs to enforce strict network segmentation.
• Enabled AWS CloudTrail across all regions for full audit logging of API activity, integrated with S3 for durable, tamper-evident log storage.
• Designed S3 bucket policies with encryption at rest (SSE-S3/KMS), versioning, and access control to meet data security standards.
• Leveraged availability zones (AZs) for high availability and fault tolerance across critical components.
• Incorporated IAM roles and least-privilege access policies to minimize the attack surface.
• Ensured the architecture aligned with industry security frameworks such as CIS AWS Foundations Benchmark and AWS Well-Architected Framework (Security Pillar).

IMPACT
Delivered a production-ready, auditable cloud architecture that reduced security risk exposure and provided a scalable foundation for future infrastructure growth.

Designed and developed a hands-on Smart Contract Security Lab simulating real-world reentrancy vulnerabilities in Ethereum-based decentralized applications.

KEY CONTRIBUTIONS
• Built vulnerable and attacker smart contracts in Solidity to demonstrate realistic exploitation scenarios, including unauthorized fund drainage.
• Simulated multiple attack vectors—simple reentrancy and cross-function reentrancy—within EVM environments to study execution behavior.
• Developed PoC exploit flows exposing insecure state handling, risky external call patterns, and improper balance update sequences.
• Conducted in-depth attack-flow analysis covering recursive call chains, transaction execution order, and smart contract state manipulation.
• Applied findings toward smart contract auditing research, vulnerability documentation, and blockchain security education.

IMPACT
Produced a reusable security lab that bridges theoretical vulnerability knowledge with practical exploit simulation, valuable for auditing Solidity codebases and training developers in secure smart contract design.

VulnRecon, a modular, automated Bug Bounty Reconnaissance Framework (BBRF) built in Bash that consolidates 15+ industry-standard security and reconnaissance tools into a single, cohesive workflow, significantly reducing manual effort and accelerating vulnerability discovery.

KEY CONTRIBUTIONS
• Integrated a curated suite of 15+ security tools, including Assetfinder, Naabu, Arjun, WaybackURLs, Wafw00f, and Nuclei.
• Implemented a modular switch-based execution model allowing selective tool activation.
• Automated critical recon phases, including subdomain discovery, port scanning, parameter enumeration, historical URL collection, WAF detection, and vulnerability scanning, collapsing multi-step manual processes into a single command.
• Designed chained tool execution flows where output from one tool feeds directly into the next, maximizing coverage and minimizing redundant scans across large attack surfaces.

IMPACT
VulnRecon reduced reconnaissance time significantly by automating what would otherwise require manual coordination across dozens of tools, delivering a production-ready framework applicable to real-world bug bounty programs, penetration testing workflows, and continuous attack surface monitoring.