This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

User:Ashish Rao

Jump to: navigation, search

I am a security consultant and researcher. I like developing web applications and have mastered the art of reviewing them. I have worked immensely on secure code reviews of J2EE and ASP.Net applications. The applications include complex multi-tiered web and standalone applications of different frameworks and programming languages. I have been working closely with development teams across the globe and have helped them to secure applications at the design and architecture level. Secure design has been a topic of my interest and recently presented at OWASP APAC 2013 on ways to secure application design.

I have authored articles and blogs about secure coding and other security best practices. Other than secure code reviews, I possess working knowledge on Penetration Tests, Vulnerability Assessment techniques and Mobile Application security. I have been involved in many trainings; have conducted trainings on “Advanced Secure Code Review Techniques” (including Application Design Flaws), at OWASP India 2012 and on Mobile Application Security at Clubhack 2012.