About

avatar

Nikhil John Thomas

Security Analyst
githublinkedintwitter

Hi, I’m Nikhil John Thomas — a cybersecurity researcher with a strong focus on Windows internals, kernel exploitation, and n-day vulnerability analysis. My work centers around low-level system security, reverse engineering, and exploit development. This blog primarily covers technical deep dives into Windows kernel vulnerabilities, Patch Tuesday updates, and detailed exploitation techniques.

For CTF write-ups and content related to web exploitation and red teaming, you can visit my other blog at ctf.pwnfuzz.com.

I also co-manage labs.pwnfuzz.com, a platform under the PwnFuzz organization dedicated to vulnerability research. There, we publish Patch Tuesday breakdowns, vulnerability write-ups, and n-day exploit analyses.

Certifications

I am occassionally doing some practical certifications. Below are some of the certifications I hold:

OSCE3 - OffSec Certified Expert 3
OSED - Offensive Security Exploit Developer
OSWE - Offensive Security Web Expert
OSEP - Offensive Security Experienced Penetration Tester
OSCP - Offensive Security Certified Professional
CRTE - Certified Red Team Expert
CARTP - Certified Azure Red Team Professional
CRTO - Certified Red Team Operator
CRTO II - Certified Red Team Lead