I'm Swaroop Yermalkar

Security Engineer, Speaker, Cyber Security Instructor, Author, OWASP iGoat Lead, OSCE OSCP OSWP

A brief about me.

If you think technology can solve your security problems, then you don't understand the problems and you don't understand the technology - Bruce Schneier

I'm Swaroop Yermalkar and I'm a security guy .

I work as security engineer with a diverse skill set focused on Mobile App Pentest, Web, API and AWS Pentesting. In addition I've authored book “Learning iOS Pentesting”and lead an open source project - OWASP iGoat which is developed for iOS security. I'm one of top researchers worldwide, working with Cobalt.io, Synack.inc. I've given talks and workshops at many security conferences including AppSec Israel, AppSec USA 2018, AppSec USA 2017, BruCON, SEC-T,EuropeanSec, Hacks in Taiwan (HITCON), GroundZero, c0c0n, 0x90, GNUnify

Books     OWASP iGoat     PGP Key
  • Web App Security
  • iOS App Security
  • AWS Security
  • Source Code Review
  • Android App Security
  • API Security
  • Security Training
  • Integrate Security in CI/CD
  • Network Security
  • Security Complaince
  • Secure Software Development Lifecycle
  • Security Automation (Basics)

Talks & Sessions

I'm regular speaker at security conferences, meetups and open source events. I've given 100+ talks and trained 1000+ professioanls as part of specialized trainings. Few snaps from events

contact me

Feel free to contact me :)