ITTIWAT NIMITLIUPANIT
London,England
Summary
Currently pursuing a Master of Science in Cybersecurity with hands-on experience in identifying system vulnerabilities and assessing web application security. Proficient in network reconnaissance, service enumeration, and basic Active Directory environments. Skilled in using tools such as Nmap, Burp Suite, Metasploit, and Nuclei, along with scripting in Python and Bash. Strong understanding of core networking concepts including TCP/IP, DNS, and HTTP/HTTPS, with a commitment to continuous learning and contributing to a security team.
Overview
1
1
Certification
Work history
Offensive Security Engineer (Internship)
KASIKORN Business-Technology Group
Bangkok, Thailand
2025.01 - 2025.05
- Supported penetration testing activities on networks and web applications to identify vulnerabilities.
- Used tools like Nmap, Burp Suite, Nuclei and Nikto for vulnerability scanning and risk analysis in web application.
- Developed backend components using TypeScript for Threat and Vulnerability Centralized Management Platform of KASIKORN Bussiness-Technology Group with Microsoft Defender for Endpoint APIs, enabling the automated retrieval and storage large volumes of security-related into a PostgreSQL database.
- Contributed to security assessments and reports with actionable insights for threat mitigation.
Education
Master of Science - Cybersecurity
Northumbria University London
London 2026.01 -
Bachelor of Computer Engineering - Cloud Computing and Cyber Security
Sirindhorn International Institute of Technology, Thammasat University
Bangkok, Thailand 2021.05 - 2025.05
Skills
- Penetration Testing
Web application and network penetration testing, vulnerability assessment, exploitation, privilege escalation, and common web attack techniques - Systems & Networking
Linux, Windows, Active Directory basics, TCP/IP, DNS, HTTP/HTTPS - Security Tools
Nmap, Burp Suite, Metasploit, Nuclei, Nikto, Gobuster, SQLmap - Security & Automation
Microsoft Defender for Endpoint, vulnerability management, security data integration, basic API interaction
- OSINT
Google dorking, Shodan, Sherlock - Scripting
TypeScript (backend), Basic scripting with Python and Bash - Databases
MySQL, PostgreSQL
Certification
CC
- ISC2 Certified in Cybersecurity
The SecOps Groups
- CAPen – Certified AppSec Pentester
- CNPen – Certified Network Pentester
- CNSP – Certified Network Security Practitioner
- CAP - Certified AppSec Practitioner
TryHackMe
- Jr Penetration Tester Certificate
- Offensive Pentration Testing
Languages
Thai
Native
English
Upper intermediate
Accomplishments
- Author – "SMARTX: Scalable Machine Learning Approach for Realtime Detection of XSS Attacks in Web Applications", IEEE KST Conference, 2025
- Completed Hackfinity Capture The Flag (CTF) Challenge
Project Experience
SMARTX – IEEE Conference Paper (KST 2025) ID : 1571086027
Scalable Machine Learning Approach for Real-Time Detection of XSS Attacks in Web Applications
- Developed an ML-based system to detect and prevent XSS attacks
- Trained models on malicious payload datasets to identify injection patterns
- Published in IEEE KST 2025 conference
BackdoorAll-In-One
Python-based backdoor toolkit for post-exploitation simulations
- Developed scripts for remote command execution and persistence testing
- Simulated attacker behavior for security research purposes
Automate Security Configuration of Multiple Pods using Kubernetes
Automated security configuration across multiple Kubernetes pods
- Implemented RBAC policies, network isolation, and ingress IP restrictions
- Reduced misconfiguration risks through automated security enforcement
Extracurricular Activities
Lead Equipment Manager – Thai Classical Music Club, Thammasat University, Thailand
- Managed musical equipment and technical setup for club performances and events
Performer & Staff – Thai Higher Education Music Festival (45th & 46th), Thailand
- Represented the university in national-level music festivals
- Collaborated with team members during performances and backstage operations
Timeline
Master of Science - Cybersecurity
Northumbria University London
2026.01 -
Offensive Security Engineer (Internship)
KASIKORN Business-Technology Group
2025.01 - 2025.05
Bachelor of Computer Engineering - Cloud Computing and Cyber Security
Sirindhorn International Institute of Technology, Thammasat University
2021.05 - 2025.05