Aaditya Purani is a Senior security engineer (Red Team) working at Tesla. Aaditya’s primary areas of expertise are web application penetration testing, mobile application penetration testing, blockchain security, product security reviews, and source code review including reverse engineering.
He actively contributes to responsible disclosure programs and is included in the hall of fames for Google, Apple, and AT&T. Aaditya also participates in capture the flag from Perfect Blue which is globally ranked top-1 CTF team , DEFCON 29 CTF finalist and is one of the founding members of UTC (United Texas Coalition) CTF Team.
As a researcher, his most famous findings include Code Execution in Akamai Zero Trust EAA Client, Brave Browser Address Bar Spoofing, and Apple Beats Account Takeover. As a writer, Aaditya has authored articles for InfoSec Institute, Buzzfeed, Hakin9, and DailyO.
As a CTF player, he has successfully played more than 150+ CTFs and emerged out as winner in PlaidCTF 2021, HITCON CTF 2020, Dragon CTF 2020, BSides SF and GCCS 2017 where he was also awarded by Prime Minister of India Hon. Narendra Modi & Prime Minister of Srilanka Hon. Ranil Wickremesinghe.
Aaditya worked as an iOS and PHP developer intern with Space-O Technologies. During this time, he developed TwitterMasher, an application that helps enterprises manage their social media presences. He was also a lead penetration tester at HackerLedge, where he consulted organizations on potential vulnerabilities. In 2017, he interned at Bishop Fox as security analyst & in 2018 summer he interned at Palo Alto Networks as a Threat Research Engineer.