Dhanith Krishna
Associate Director - Offensive Security, EY GDS
Dhanith Krishna
Dhanith leads Attack & Red Team services for EY Global Delivery Services, leading a global team of 400+ ethical hackers. He is a hardcore practitioner with rich experience working with the world’s leading financial institutions helping them to secure their digital presence. Dhanith is a member of OWASP and has contributed to several open-source infosec projects, including OWASP AITG & WSTG. Dhanith is passionate about educating the community on cybersecurity and makes use of every opportunity to share his knowledge and expertise on the topic.
Email Address:
dhanithkrishna13@gmail.com
About
Dhanith loves breaking applications/infrastructure to find security bugs and to help developers fix them. As a developer turned penetration tester, he enjoys dissecting applications and finding creative ways of getting around security controls. With around nine years of experience in cybersecurity consulting, he has worked with Fortune 500 banking and insurance customers, helping them to make their digital presence safer. He has extensive experience in attacking digital wallets, internet banking portals, payment integrations, core banking solutions, back-office applications, middlewares, and mainframes for banking clients across APAC and EMEIA. He is well versed in red team tradecraft, performing adversary simulations, and scenario-based red teaming.
PT Skills: Web Application, Web Services, Thick and Thin Client, Mobile Applications(Android/iOS/Hybrid), Mainframe (zOS/AS400/TANDEM), Cloud (AWS/Azure), Infrastructure, FS (Corebanking/ATM/POS/SWIFT/FIX), ERP solutions (SAP/Salesforce/Oracle EBS), Secure code review.
Red Team skills: OSINT techniques, Physical security attacks, C2 Infrastructure, Custom malware, Social Engineering, Active Directory attacks.
Development: PHP, Python, Android, PowerShell, Terraform, Ansible.