I'm a security researcher working where internet measurement meets embedded systems — and the privacy of people who never agreed to be measured. I've hardened LIDAR firmware on aerospace hardware and exposed how smart TVs fingerprint the people who buy them.
M.S. Computer Science at Northeastern (Khoury College), 4.0 GPA, graduating May 2027. Research apprentice in the Mon(IoT)r Lab under Prof. David Choffnes. One CRC Press book chapter, one Government of India patent, and measurement work across network privacy, EV-charging security, and the attack surface of AI agents. I founded Mukti, among the largest student open-source communities in India.
I learn systems by taking them apart. That instinct turned a few weekend hackathons into Mukti — one of the largest student FOSS communities in India, with 1,600+ students mentored. Everything below is the same instinct applied to systems people are forced to trust without being asked.
Northeastern University — Mon(IoT)r Lab
2025 — present · BostonI audit blackbox systems across twelve retail smart TVs on eight operating systems — how the firmware fingerprints buyers, and whether the opt-out switches do anything at all. Mon(IoT)r Lab ↗
IIT Bombay — Trust Lab (ONYX)
May 2024 — May 2025 · MumbaiFirst empirical measurement of tunnel-based reverse-proxy services (Ngrok, Cloudflared, and peers) across distributed vantage points — their hidden topology, privacy implications, and viability as Tor relays. Lead author. Gosain ↗ · Sharma ↗
ISRO — Indian Space Research Organisation
Apr — Jun 2024 · BengaluruI designed and hardened a communication protocol for LIDAR sensor data on embedded aerospace hardware — memory safety and a verified secure-boot chain, where failure means losing a satellite's eyes.
Ramaiah Institute of Technology
Oct 2024 — Jun 2025 · BangaloreI lectured 120+ students on network security and data communication — ARP poisoning, IPv6 MITM, Snort, SambaCry — with labs that made them break the concept before trusting it.
Cryptographic Bastions Published
CRC Press · 2024Cloud security, access control, and encryption primitives. Taylor & Francis ↗
ChargeGuard — DDoS mitigation for EV charging Patent
Gov. of India · publishedEarly detection and in-kernel mitigation of DDoS against EV charging infrastructure, built on the Kavaach OCPP testbed.
OCPP 1.6 vs 2.0.1 — a security analysis Under review
sole authorWhy the newer, TLS-mandating revision can end up more interceptable in practice, plus a quantitative index for reasoning about the gap.
Smart-TV Privacy audit Under review
Which opt-outs are honored, which keep transmitting regardless, and what leaks out the side channels.
Tunnel & reverse-proxy measurement Under review
w/ IITB Trust LabA distributed-systems characterization of expose/tunnel services across a large probe campaign.
things I take apart: televisions, chargers, locks, satellites.
The measurement backbone behind the tunnel and reverse-proxy studies — vantage points, orchestration, and a parallel collection pipeline.
A reverse proxy that understands the Model Context Protocol and applies semantic data-loss prevention between an agent and the tools it reaches.
Multi-agent prompt-injection defense that treats all fetched web content as untrusted before it reaches the model.
Audits Kubernetes egress — what a workload can actually reach versus what its network policy claims to allow.
A local AI research workbench for reviewing measurement papers — reviewer personas, a fact-check pipeline, self-hosted search, all on a 16GB laptop.
A covert channel riding a service deployed across most of the internet — no session, no data plane, no signature. Mechanism withheld pending peer review.
The de-facto OCPP testbed replicating real EV charging stations — SYN floods, billing exploits, kernel-level mitigation benchmarks.
Detects malicious Wi-Fi — Evil Twin, Honeypot, Deauth — through active and passive scanning.
| Languages | PythonGoCBashJavaScriptSQL |
|---|---|
| Systems & infra | LinuxeBPFKubernetesDockerPodmanAWS / S3embedded / RPi |
| Measurement | tcpdumpWiresharkScapyZeekmitmproxyTrancoOONIGlobalping |
| Security | ARP / IPv6 MITMSnort IDSsecure bootreverse engineeringOCPPMQTTTLSfuzzing |
| ML & agents | TinyMLlocal LLMs (Ollama)embeddingsmulti-agent / MCPprompt-injection defense |
Khoury Graduate Research Apprenticeship
2025 — presentResearch on ACR systems, smart-TV privacy, and network fingerprinting.
fwd:cloudsec — Scholarship
2025Selected for a scholarship worth $1000. fwdcloudsec.org ↗
Founder — Mukti FOSS Community
2020 — presentOne of the largest student open-source communities in India. 1,600+ students mentored.
Top Speaker — FOSSMeet '24 & '25
NIT CalicutWorkshops and talks on digital privacy, anonymity, and security threats. fossmeet.in ↗
Patent — ChargeGuard, Gov. of India
publishedDDoS detection and kernel-level mitigation for EV charging infrastructure.
Book chapter — CRC Press
2024Cryptographic Bastions, on cloud security and encryption primitives.
Let's build something resilient - FOSS, system architecture, or anything security.