Nischal Bahadur Thapa
Independent Security Researcher
"Have I not commanded you? Be strong and courageous. Do not be afraid; do not be discouraged, for the Lord your God will be with you wherever you go."
— Joshua 1:9Who can I be?
Independent Researcher and Technical Analyst with experience in vulnerability research, technical analysis, OSINT, development, and security-focused automation. Skilled in vulnerability assessment, technical investigation, and building adaptable solutions across modern IT environments.
"With a proven track record in vulnerability research, I am currently deepening my expertise in AI security and malware development, with a focus on automating and enhancing threat detection through artificial intelligence to stop cybercrime from spreading."
Experience
▶ Artificial Intelligence (AI) Security Jun 2025 - Present
- Currently engaged in researching Artificial Intelligence attack vectors.
- Completed the TCM AI Cyber Security workshop.
- Solved all the LLM attack vector related labs on PortSwigger Academy.
- Researching AI LLM attacks on Gray Swan Academy.
- Constantly creating new tools and scripts with the help of AI for better workflow.
▶ Security ResearcherSep 2023 - Present
- Identified and reported vulnerabilities across platforms like HackerOne, Bugcrowd, Intigriti, and self-hosted programs.
- Submitted valid findings on LinkedIn, NASA (National Aeronautics and Space Administration), and many more.
- Selected as a Private Invitee on some programs.
- Actively engaged in identifying authentication flaws, session management weaknesses, RCE, and business logic vulnerabilities in real-world applications.
- Communicated findings through detailed technical reports, reproducible attack scenarios, and impact analysis.
▶ Ethical HackerFeb 2024 - Present
- Spent the initial journey mastering web challenges.
- 90%+ success rate in identifying misconfigurations and hidden endpoints in lab simulations.
- Achieved Top 0.016% globally.
- Responsible Disclosure of vulnerabilities with 300+ organizations.
▶ Lead | Researchers Team (Mars VDP) Dec 2025
- Collaborated with security researchers from different servers and performed security assessment on a VDP.
- Directed the team on a temporary targeted project, holding meetings and documenting findings.
- Successfully identified bugs on Mars Vulnerability Disclosure Program and concluded the project after achieving objectives.
▶ Secretary General | Informational Technology (IT) ClubApr 2025 - Apr 2026
- General secretary of the IT club. Built and launched two major websites for college activities.
- Organized a Quiz competition with a web interface and a questionnaire bot.
- Hosted an E-Sports event, managing resources and budget evaluation.
▶ Video Streamer | The YouTube Channel
- Producing technical walkthroughs and vulnerability research tutorials to educate the cyber space on ethical hacking methodologies.
Projects & Repositories
AI Hacking Overview
Extensive research and attack vectors regarding Artificial Intelligence and LLM exploitation.
Advanced Recon Methodology
One of the best structured reconnaissance methodologies for identifying targets.
The_Hunt_01.sh
A flagship custom tool built for automation and advanced security workflows.
Some Python Tools
Scripts and tools for IP-based rate limiting bypasses, reconnaissance, and workflows.
Writeups & Documentation
Weekly System Directive
Initializing cryptographic motivation sequence...
Certificates & Details
- CS50 Introduction to Cybersecurity (Cambridge, MA)
- Kairos Sec: AD Windows Hacking
- ADB Institute Cybersecurity course
- Languages: English (Fluent), Nepali (Native), Sign Language (Conversational)