Bug Hunters®
Website:
bughunters.io
Job details:
Profile: Cybersecurity Intern
Location: Noida sec. 125
Key Responsibilities:
Perform Vulnerability Assessment and Penetration Testing (VAPT) on infrastructure, web applications, REST APIs, and mobile applications (Android/iOS)
Identify and validate security vulnerabilities such as those listed in the OWASP Top 10 (Web, Mobile, Infra & API) and mobile risks
Conduct manual and automated security testing using industry-standard tools
Assist in source code review and secure configuration assessments (where applicable)
Test for common web vulnerabilities (XSS, SQL Injection, IDOR, CSRF, SSRF, authentication & authorization flaws)
Perform API security testing (token handling, rate limiting, broken object-level authorization, improper input validation)
Conduct basic mobile application security testing (static and dynamic analysis, insecure storage, certificate pinning bypass, reverse engineering basics)
Prepare detailed vulnerability reports with proof of concept, risk rating, and remediation recommendations
Re-test vulnerabilities after fixes and validate remediation
Support secure SDLC initiatives and provide security recommendations to development teams
Stay updated with emerging attack vectors, tools, and exploit techniques
Required Skills & Qualifications:
Bachelor’s degree in Computer Science, Information Security, IT, or related field
Basic understanding of:
a. Web technologies (HTTP/HTTPS, REST APIs, cookies, sessions)
b. Networking fundamentals (TCP/IP, DNS, Firewalls)
c. Authentication mechanisms (JWT, OAuth, session-based auth)
Familiarity with OWASP Top 10 (Web & API Security)
Basic knowledge of mobile application architecture (Android/iOS fundamentals)
Understanding of common VAPT tools such as:
Burp Suite
OWASP ZAP
Nmap
Nikto
Postman (for API testing)
Basic exposure to MobSF or similar mobile testing tools
Familiarity with Windows/Linux environments
Strong analytical, troubleshooting, and problem-solving skills
Good documentation and technical report writing skills
Eagerness to learn ethical hacking techniques and exploit methodologies
Click on Apply to know more.