Security Researcher & AI Engineer

AbrarDar

Bridging the Gap Between Intelligent Systems and Offensive Security.

View Research Get In Touch
AD
01101
CVE
0xFF
RCE
BERT
security researcher · ai engineer
Profile

About Me

3rd-year B.Tech AIML student and independent security researcher. I specialize in identifying critical vulnerabilities and building privacy-first AI tools.

From triaging RCE bugs in GitHub Actions to engineering AI-powered CLI security tools, I focus on turning complex vulnerabilities into robust technical solutions. My work spans the intersection of machine learning systems and offensive security research.

Based in Mohali, India — open to remote collaboration, bug bounty programs, and research partnerships.

4+Projects Built
2CVEs Reported
90%+ML Accuracy
7.0CVSS Score
Research & Engineering

Featured Work

01 // SECURITY RESEARCH
HIGH — CVSS 7.0–8.9

Odoo 18.0 Vulnerability

Unauthorized access to res.users model in Odoo CE 18.0, exposing credential data. Deep ORM exploitation and API-based enumeration. Reported via Intigriti responsible disclosure.

IntigritiORM ExploitationAPI EnumerationAuth Bypass
Read Report
02 // AI + SECURITY

InboxZero CLI

AI-powered Gmail cleanup using fine-tuned DistilBERT. 100% on-device processing for maximum privacy. Auto-deletes spam with 90%+ confidence using SHA-3 hardware hashing.

Python 3.10+DistilBERTHuggingFaceOAuth 2.0
GitHub Repository
03 // CRYPTOGRAPHY

Cryptomancer

Modern desktop encryption suite supporting AES, DES, and RSA. Secure .pem key pair generation, real-time action logging, clean GUI via ttkbootstrap. Fully unit tested.

PythonAES / DES / RSAttkbootstrapUnit Testing
GitHub Repository
04 // CVE RESEARCH
RCE — CWE-20/94

GitHub Actions RCE

Command Injection in anchore/grype GitHub Action. Arbitrary command execution on GitHub-hosted runners via unsafe CI/CD input validation. Reported via HackerOne.

HackerOneRCECI/CD SecurityCWE-20
Research Documentation
Technical Stack

Skills & Tools

Languages
  • Python (Primary)
  • Java (Basics)
  • C (Basics)
  • HTML / CSS
Cybersecurity
  • Bug Bounty Hunting
  • Web App Pen Testing
  • Vulnerability Assessment
  • Responsible Disclosure
  • API Security Testing
  • OWASP Top 10
  • Kali Linux / Metasploit
  • Nmap / SQLMap / Wireshark
AI / ML
  • HuggingFace Transformers
  • DistilBERT / BERT
  • Google OAuth 2.0
  • Gmail API
  • MongoDB (Basics)
  • Google Cloud (Basics)
Tools
  • Git / GitHub
  • Linux (Kali, Ubuntu)
  • VS Code / Postman
  • Cloudflare Tunnel
Platforms
  • Intigriti
  • HackerOne
  • HackerRank
  • GitHub Actions
Soft Skills
  • Technical Writing
  • Problem Solving
  • Leadership
  • Teamwork
  • Time Management
Academic Journey

Education & Certifications

2024 — 2027 · Ongoing
B.Tech — Artificial Intelligence & Machine Learning
Chandigarh Engineering College (CGC), Jhanjeri, Mohali
Focus: Neural Networks, Deep Learning, and AI-driven Security Protocols.
2021 — 2024 · Completed
Diploma in Civil Engineering
Kashmir Government Polytechnic (KGP), Srinagar
Foundational logic and mathematical modeling for complex systems.
2020 · Completed
Secondary School (10th) · 94.6%
Fayaz Educational Institute, Srinagar
Distinction in Core Sciences.
05/2025 — 07/2025 · Internship
Summer Training — CompTIA Security+
Professional Certification Program, Mohali
Threat analysis, penetration testing, ethical hacking, and network security.
Certifications
Intro to Cybersecurity IA Participation — Re-Skilling IA Participation — Advanced IA Online Training HTML & CSS Basic HackerRank CompTIA Security+ AI Fundamentals Vue.js
Get In Touch

Let's Work Together

Open to security research collaborations, bug bounty partnerships, AI/ML projects, and freelance opportunities.

abrardar.00003085389@gmail.com