Biswadeb Mukherjee Offensive Security Research Portfolio Main Visual

Red Team Operations and Adversary Simulation Visual Accent

Malware Research and Threat Intelligence Visual Accent

ACTIVE NOW · KOLKATA, INDIA

Biswadeb Mukherjee

Offensive Security Researcher specializing in adversary simulation, malware engineering, forensics, and threat intelligence operations. Building controlled attack-chain research for real-world defense readiness.

METHODS ▸ACCESS DOSSIER

COMMUNICATION PROTOCOL

Professional engagement, security collaboration, and operational communication conducted through verified channels only.

OPERATIONAL METRICS

10+Projects

Offensive tooling, simulations, and security research

3Publications

Deep-dive analysis on real-world attack patterns

6+Years Experience

Adversary mindset across multiple domains

4Core Focus Areas

Red Teaming • Malware • Recon • Engineering

TECHNICAL CAPABILITY SCOPE

Offensive security research and adversary-focused capability development conducted within controlled and ethically scoped testing environments.

Reconnaissance & OSINT

Attack surface discovery, infrastructure mapping, intelligence collection, and adversarial footprint analysis across public and semi-public sources.

Web Application Security

Security assessment of modern web applications involving authentication flows, business logic analysis, API security, and vulnerability research.

Network Security

Internal and external network assessment focused on exposure analysis, service enumeration, protocol weaknesses, and trust-boundary evaluation.

Red Teaming

Adversary simulation exercises covering initial access, lateral movement, persistence methodologies, and objective-oriented attack-chain execution.

Offensive Automation

Development of custom tooling, automation pipelines, and operational frameworks designed to emulate adversarial scale under controlled conditions.

Malware Engineering & Tooling R&D

Research into payload development, loaders, crypter experimentation, evasion methodologies, and offensive capability prototyping.

Digital Forensics & Incident Response

Artifact analysis, incident triage, forensic timeline reconstruction, compromise assessment, and evidence-aware investigative workflows.

Discipline Beats Tools

No VPN, password manager, or encrypted app saves you if you're careless. Habits matter more than gadgets.

Assume Breach

Treat every system, account, and device as potentially compromised. Don't assume anything is private or safe by default.

Strong Encryption For Sensitive Talk

Use verified, end-to-end encrypted messaging when discussing sensitive matters. Verify contacts before trusting them.

Signatures Verify Identity, Not Safety

A verified contact proves identity, not device integrity. Trusted people can still operate from compromised systems.

Isolate Compromised Systems Immediately

If a device or account appears compromised, disconnect it and stop using it. Continued usage increases exposure.

Compartmentalization

Separate devices, accounts, communication channels, and identities across different operational domains.

Metadata Reveals Everything

Behavioral patterns, timing, relationships, and movement expose more than message content.

Constantly Verify Trust

Trust is temporary and must be continuously validated. People, systems, and environments change.

Psychology Is The Weak Link

Urgency, familiarity, fear, and authority are operational attack surfaces. Skepticism is part of security.

Device Compromise Breaks Everything

If the endpoint is compromised, encryption becomes irrelevant. Physical and local system integrity comes first.

Keep It Simple

Overcomplicated routines fail under pressure. Consistent fundamentals outperform elaborate systems.

Avoid Long-Term Patterns

Static routines increase trackability. Vary timing, devices, movement, and communication methods.

Logs Cut Both Ways

Records provide accountability and recovery, but unsecured logs become intelligence assets for adversaries.

Every Tool Adds Risk

Every platform, service, application, or dependency expands the exposure surface.

Plan For Failure

Recovery paths, offline backups, and operational redundancy are part of security, not separate from it.

PROJECTS

Operational Builds

Real-world tooling and frameworks. Public where appropriate, restricted where disclosure would reduce research value.

.: HTTPS://DOI.ORG/10.5281/ZENODO.19432181

Domain Intelligence and DNS Behavior Analysis Framework

2026

FLAGSHIP

High-capacity DNS intelligence engine designed for extensive infrastructure mapping and behavioral correlation.

Domain IntelDNS AnalysisOSINT

Mohini, aka R.A.M.B.H.A

2025

FEATURED

Mohini, codenamed Agent R.A.M.B.H.A, is a next-generation Cyber Deception & Red Team Operations Framework built in Golang for manipulation, invisibility, and controlled chaos

DeceptionRed TeamGolang

HopZeroDNS

2025

FEATURED

Traditional DNS resolvers are stuck in the past - slow, opaque, and architected for a trust model that no longer exists. HopZeroDNS is a next-gen recursive DNS resolver purpose-built for today's threat landscape, with performance, traceability, and cryptographic assurance as its core principles.

DNSResolverPerformance

All Publications

IDify - Decentralized Identity, Credentials & Reputation Protocol

2025

IDify is a decentralized application (dApp) and protocol that redefines how resumes, credentials, and reputations are managed, verified, and trusted - all on-chain.

Web3IdentityCredentials

Mayabati

2024

Mayabati is a personal AI chef designed for enhancing the culinary experience. Crafted by Biswadeb Mukherjee.

AIAssistantProduct Build

Incognito Vault

2023

A security-first, lightweight application designed to assist penetration testing by providing a controlled, hardened environment for practicing and validating offensive security skills.

Pentest LabHardeningOffSec

If you find value in the research and projects presented here, you may choose to support this work through Buy Me a Coffee. Your support helps sustain ongoing research, project development, and the infrastructure required to maintain these initiatives. Before making any contribution, please review the Payment & Support Rules.

RESEARCH

Research and Publications

Selected papers and technical write-ups documenting investigations, methodologies, and outcomes.

DOI: https://doi.org/10.5281/zenodo.19432181

Domain Intelligence & Behavior System (DIBs)

Zenodo2026

FLAGSHIP

High-throughput DNS intelligence framework enabling large-scale infrastructure analysis and behavioral correlation.

Domain Name Analysisoffensive securityDNS Infrastructure Analysis

Read Publication →View GitHub →

Passive Forensic Analyses of Pattern-Based PAN & Aadhaar Portals

GitHub2026

FEATURED

The investigation documents observable, non-intrusive indicators associated with multiple publicly accessible websites impersonating or mimicking Indian identity-related services.

ForensicsIdentity AbuseThreat Intel

Read Report →View GitHub →

Investigating Culinary Practices Transformation Through AI-Powered Offline Recipe and Diet Management Chatbots

ResearchGate2025

FEATURED

A study on offline AI-driven recipe and diet assistant workflows, including usability and practical adaptation patterns.

AICulinary InformaticsOffline Assistant

Read Publication →View GitHub →

CREDENTIALS

Verified Capabilities

Certifications, research recognitions, and formally validated competencies.

🛡️

Certified Threat Hunter - Privilege Escalation (Level 2)

Intel 4712026

Offensive security methodology, reconnaissance, exploitation and post-exploitation discipline aligned with adversarial simulation standards.