Gurpratap Smagh
Motivated engineering student specializing in offensive ethical hacking and security research, with a talent for designing technical solutions and uncovering vulnerabilities. Eager to apply hands-on skills in penetration testing, secure systems design, and problem-solving to protect and enhance digital infrastructure.
Cybersecurity
Offensive Security
Full-Stack Development
Cloud & SIEM
About Me
Professional Background
Currently pursuing Bachelor's of Engineering in Information Systems at University of Guelph-Humber with exceptional academic performance (Dean's Honorary List with 89.3% and 92.4% GPAs). Specialized in offensive ethical hacking, security research, and full-stack development.
As an active bug bounty researcher, I've successfully reported vulnerabilities through Bugcrowd including findings for OpenAI. My methodology focuses on ethical disclosure, thorough recon, and manual testing combined with automated tools to identify IDORs, XSS, and privilege escalation flaws.
Reported Vulnerabilities
Current GPA
Education & Certifications
- Bachelor's Engineering - University of Guelph-Humber
- Google Cybersecurity Professional Certificate
- ISC2 Certified in CyberSecurity (CC)
- CompTIA Security+ (Expected Dec 2025)
- TryHackMe Cyber-Security 101 Course
Featured Projects
Coursify Web App
Full-Stack
Full-Stack MERN Learning Platform
Built a complete MERN web application hosted on Azure (backend) and Vercel (frontend). Features modern dark-themed UI with React, secure JWT authentication, bcrypt password hashing, rate limiting for DDoS protection, and robust input validation.
GiveHub
Blockchain
Decentralized Crowdfunding Revolution
A cutting-edge Web3 donation platform leveraging ZetaChain for seamless cross-chain transactions. Features an integrated AI assistant for campaign optimization and smart contract automation for transparent fund distribution.
Ethereum Wallet
FinTech
Secure Cryptocurrency Management
A beautifully crafted, security-first cryptocurrency wallet with an intuitive interface. Implements advanced encryption protocols and multi-signature support for enterprise-grade security in digital asset management.
Incident Response Simulation
Security
Deloitte Security Analysis (Forage)
Performed comprehensive threat detection using CLI tools on log files. Documented findings following ISO 27001 frameworks, conducted post-incident root cause analysis, and provided security control recommendations for enterprise environments.
SpiderBotX Robotics
Robotics
Team Leadership & Engineering Design
Led a 4-member team designing a robotic walking mechanism using SolidWorks and Arduino. Achieved 50% motor usage reduction through gear optimization and mechanical redesign. Integrated breadboard solutions to overcome wiring limitations.
Bug Bounty Research
Security Research
Offensive Security & Vulnerability Research
Successfully reported 2 vulnerabilities through Bugcrowd (OpenAI & others). Specialized in IDOR identification, XSS vectors, and privilege escalation flaws using manual testing and automated tools. Focused on ethical disclosure and program compliance.