IT Security Analyst · Delhi, India

Anshil Dev

OSCP+ · eCPPTv2 · eWPTXv2 · Enterprise VAPT · CERT-IN

I'm a OSCP+ certified IT Security Analyst based in Delhi, India, with over 3 years of enterprise-scale penetration testing experience across banking, fintech, and healthcare sectors.

I've conducted 400+ VAPT engagements covering more than 5,000 assets — identifying critical vulnerabilities that would otherwise remain invisible. My work spans internal network pentests, external penetration testing, Active Directory security assessments, PCI DSS compliance cycles, and CERT-IN empanelled audits.

Most recently, I completed a 9-month onsite core banking infrastructure security audit at a leading Indian public sector bank — 1,500+ IPs, 7 mission-critical applications, full DC and DR environment assessment under the CERT-IN framework. That engagement alone covered a ₹7 crore+ banking infrastructure.

I started this website for one reason: to give back. Everything I know, I learned from free resources, late nights, and failing over and over. If my notes or blog posts help even one person pass OSCP or land their first security job, that's enough for me.

OSCP+ OSCP eCPPTv2 eWPTXv2 CERT-IN PCI DSS
Read the Blog Free Notes Get in touch
Anshil Dev — OSCP+ certified IT Security Analyst, enterprise VAPT specialist, Delhi India

"Security is not a product. It is a process."

I've sat inside banking data centres, tested systems that millions of people's money depends on, and written reports that landed on the desks of CISOs and GMs. None of that makes me unreachable. It makes me someone who understands what's at stake — and wants to make sure the next generation of security professionals does too.

Career journey

Jul 2025 – Present
Onsite · Banking

Core Banking Security Audit — Indian Public Sector Bank

9-month CERT-IN empanelled infrastructure audit. 1,500+ IPs, 7 critical banking applications, DC & DR validation, Active Directory security review, lateral movement analysis.

Apr 2024 – Mar 2025
Enterprise VAPT

194 Engagements — Panacea Infosec

3,494 structured security testing activities. 274 Critical, 365 High vulnerabilities identified. 6 client appreciation letters. 100% compliance cycle adherence.

Dec 2025
Certification

OSCP+ & OSCP — Offensive Security

Passed the industry's hardest hands-on penetration testing certification. 24-hour live exam, full AD chain + standalone machines exploitation and documentation.

May 2023 – Present
Full-time

IT Security Analyst — Panacea Infosec Pvt. Ltd., Delhi

Enterprise VAPT across banking, fintech, and healthcare. PCI DSS ASV scanning, CERT-IN audits, Active Directory exploitation, vulnerability lifecycle management.

Apr 2022 – Oct 2022
Research

IT Security Researcher — EHackify, Kerala

Structured threat research, exploit validation, OWASP Top 10 testing, CTF-based simulations. Where the journey began.

All notes and blogs are free.

If my content helped you in your journey, a coffee keeps me motivated to write more.

☕ Buy me a coffee