About Experience Certifications Writing Skills Contact
Security Researcher & Penetration Tester

Rakesh Mali.

Staff Engineer @ SonicWall / Bug Bounty Hunter / Ethical Hacker
OSCP CRTP OffSec Wireless 5+ Years
Get in Touch View Experience
Rakesh Mali
5+Years
50+Vulns
Scroll
About

Who I Am.

I'm Rakesh Mali — a Security Researcher and Penetration Tester with over 5 years of experience in ethical hacking. I currently serve as a Penetration Testing Staff Engineer at SonicWall, conducting advanced security testing and providing remediation strategies for enterprise network and cloud environments.

Previously at Fortinet, I worked as a Security Researcher performing Web, Mobile, Network, and API penetration testing — with hands-on experience in FortiDAST, external network pentests, REST API reviews, zero-day exploit PoC development in Python, and fuzzer/crawler research.

Beyond my corporate roles, I am an independent security researcher actively hunting bugs on HackerOne, Bugcrowd, and other platforms — responsibly disclosing critical vulnerabilities including account takeovers, OTP bypasses, OAuth misconfigurations, Blind XSS, CSRF exploits, and access token leakage.

I hold OSCP and CRTP certifications, and am also working on a short film focused on hacking and scams to help educate the public about cybersecurity risks.

5+Years Experience
50+Vulns Disclosed
3Certifications
8+Blog Posts
Career

Experience.

Jan 2026 — Present
Penetration Testing Staff Engineer
SonicWall
Working as a Staff Engineer focusing on penetration testing, vulnerability assessments, and securing enterprise network and cloud environments. Conducting advanced security testing and providing remediation strategies across web, API, network, and cloud attack surfaces.
Web App PentestCloud SecurityNetwork AssessmentAPI Security
Mar 2021 — Jan 2026
Security Researcher & Penetration Tester
Fortinet
Skilled hacker with expertise across Web, Mobile, Network, and API penetration testing. Hands-on with FortiDAST for Fortinet product security testing. Conducted external network pentests, REST API security reviews, wrote zero-day exploit PoCs in Python for FortiCART, and engaged in research on fuzzer and crawler enhancements. Also scripted in Lua for Fortinet's scripting engine.
FortiDASTZero-Day ResearchPython ExploitsFuzzingLua Scripting
Ongoing — Independent
🐛
Independent Security Researcher
HackerOne · Bugcrowd · Other Platforms
Independently hunting and responsibly disclosing critical vulnerabilities across major global products. Published detailed writeups on Medium covering OTP bypasses, Blind XSS chains, OAuth misconfigurations, CSRF exploits, host header injection, access token leakage, and full account takeovers.
HackerOneBugcrowdResponsible DisclosureXSSCSRFOAuth
Credentials

Certifications.

Offensive Security
OSCP
Offensive Security Certified Professional · May 2024
Pentester Academy
CRTP
Certified Red Team Professional · Jan 2024
Offensive Security
OffSec Wireless
OffSec Wireless Professional · April 2023
Bug Bounty & Research

Writing.

HackerOne Bugcrowd Medium
🔐OTP BYPASSAccount Takeover ChainCRITICAL
Account Takeover
Account Takeover by OTP Bypass
Read on Medium ↗
 💉BLIND XSSHTML Injection → $3,000 Bounty$3,000 PAID
XSS · $3,000 Bounty
How I Earned $3000 From HTML Injection to Blind XSS
Read on Medium ↗
 🛡️CSRF + OAUTHGoogle OAuth Binding ExploitHIGH
CSRF · OAuth
Account Takeover via CSRF in Google OAuth Binding
Read on Medium ↗
 🔑OAUTH MISCONFIGToken Hijacking via Implicit FlowHIGH
OAuth
O'Auth Misconfiguration
Read on Medium ↗
 🌐HOST HEADERCache Poisoning → Account TakeoverMEDIUM
Host Header Injection
Host Header Injection to Account Takeover
Read on Medium ↗
 🪙TOKEN LEAKAGEBearer Token Exposure → Account TakeoverHIGH
Token Leakage
Access Token Leakage To Account Takeover
Read on Medium ↗
 💳LOGIC FLAWPremium Account Purchased at ₹0HIGH
Logic Flaw
I Hacked and Purchased the Premium Account at ₹0
Read on Medium ↗
 📱OTP BYPASSOnePlus Auth VulnerabilityONEPLUS
OTP Bypass · OnePlus
OTP Bypass in OnePlus
Read on Medium ↗
Technical Arsenal

Skills.

Web App Security
API Security Testing
Network Penetration Testing
Mobile App Security
Cloud Security
Wireless Security (OffSec)
FortiDAST
Burp Suite Pro
Python Exploit Dev
Fuzzing & Crawling
Active Directory Attacks
Bug Bounty Hunting
Ethical Hacking
Lua Scripting
Contact

Let's Talk
Security.

Whether it's a pentest engagement, security research collaboration, or bug bounty discussion — I'd love to hear from you.

✉ mrr4431@gmail.com ⟶ LinkedIn ⟶ Twitter / X ⟶ Medium 🌐 Website