Portfolio
Pallavi Srinivasappa
I am a security researcher and software developer with a passion for exploring the intricacies of cybersecurity and software development. With a strong background in both fields, I strive to create innovative solutions that enhance security and improve user experiences. My work involves analyzing vulnerabilities, developing secure applications, and contributing to the broader tech community through research and collaboration.

About
Boston University
M.S. Computer Information Systems · Cybersecurity Concentration
I am a security researcher and software developer with a passion for exploring the intricacies of cybersecurity and software development. With a strong background in both fields, I strive to create innovative solutions that enhance security and improve user experiences. My work involves analyzing vulnerabilities, developing secure applications, and contributing to the broader tech community through research and collaboration.
0+
Projects Completed
0+
Certifications
0+
Technical Writeups
0+
Skills & Tools
Skills
Tools and technologies
Across security tooling, languages, and infrastructure — built through coursework, internships, and independent projects.
Programming
Frameworks
Cloud
Cybersecurity
Networking
IAM & Security Domains
Databases
Tools & Design
Projects
Selected work
Security labs, product builds, and independent projects.
Mar 4, 2025
Blockchain-Based Authentication on Stellar
Researched and built a proof-of-concept for cryptographic, user-controlled authentication on the Stellar network as an alternative to centralized identity.
Sep 1, 2024
MITRE eCTF 2026: Secure Firmware on Arm Cortex-M0+
Designed and attacked bare-metal firmware for MITRE's embedded Capture the Flag competition, using key-derivation-based cryptography for authentication.
Sep 1, 2024
Resume Analyzer
A React Router + PDF.js web app that parses and analyzes uploaded resumes, containerized with Docker.
Jul 2, 2024
MQTT Broker Hardening & IoT DoS Lab
Deployed an MQTT broker on a Raspberry Pi and ran my own DoS attacks against it to study where IoT messaging protocols fail by default.
Experience
Where I've worked
From an early-stage Web3 startup to enterprise software, in chronological order.
Certifications
Verified credentials
Writing
Recent blog posts
Guides and technical writeups on cybersecurity, infrastructure, and things I've built.
Enterprise Cybersecurity Management: Frameworks, Risk, and Strategy
Framework-level thinking from my Enterprise Cybersecurity Management coursework at BU -- how organizations weigh risk, cost, and compliance at scale.
Nmap Mastery: The Reconnaissance Tool Every Security Person Must Know
A deep look at Nmap, the reconnaissance tool behind nearly every network engineer's and penetration tester's toolkit.
Database Security: Protecting the Crown Jewels
Why database security is the last line of defense once the application layer is compromised, and how to apply least privilege at the data layer.


