about.

📄 Hiring? Check out my CV

I'm Crus (Yash Gholap), a cybersecurity student and aspiring red teamer pursuing a B.E. in Computer Engineering at Mumbai University (2021–2025). My focus areas include ethical hacking, network security, and digital forensics, with a growing interest in offensive security and system defense.

I’ve built tools like malware scanners, password vaults, and steganography utilities — all designed to improve security and privacy. I also enjoy solving CTFs on platforms like PicoCTF and recently completed Advent of Cyber 2024.

I hold the Google Cybersecurity Professional Certificate and am pursuing CRTA, CEH, with plans for OSCP to further strengthen my red teaming skills.

From analyzing network traffic to reversing malware, I take a hands-on, detail-driven approach. I’m open to opportunities that challenge me and contribute to building safer, more resilient systems.

What I Do

  • Ethical hacking, CTF solving, OSINT investigations
  • Full-stack development (Python, TypeScript, Svelte)
  • Security tools — malware scanners, steganography, encryption
  • AI-powered bots for documents & PDF Q&A

Featured Projects

  • ScanForge: Custom TCP scanner & banner grabber (Scapy + CLI)
  • Password Vault: Local password manager with 2FA in Python
  • AI PDF Bot: Document summarization & Q&A (DeepSeek-R1 + Ollama)
  • MD5 Malware Scanner: GUI-based malicious file detection using hash comparison
  • Image Steganography Tool: Hide/extract messages in images with LSB (Python + Pillow)

Certifications & Education

  • B.E. Computer Science & Engineering(Specialization in Cybersecurity, IoT, Blockchain technology) -Mumbai University
  • Google Cybersecurity Professional Certificate: SOC operations, incident response, threat detection
  • CRTA (in-progress): Certified Red Team Analyst
  • CEH (in-progress): Certified Ethical Hacker
  • Google Cybersecurity Professional Certificate: Threat detection, incident response, SOC operations, intrusion detection & prevention, cyber attacks, vulnerability assessments, incident management, network security, threat management, system hardening, Bash scripting, SQL
  • Specialized Courses: Wireshark Analysis, SSRF, SQLi, Authentication Exploits, Bug Bounty Hunting, Web Pentesting
  • Hands-on Challenges: Advent of Cyber 2024, Tata Cybersecurity Analyst Simulation, ANZ Cybersecurity Management Simulation, Mastercard Cybersecurity Simulation

Connect with Me

Always open to collaborations and challenging projects. Let’s connect!