About Us

About Us - TechWithAmardeep

About TechWithAmardeep

Hi, I'm Amardeep Maroli — an MCA student passionate about API security, bug bounty hunting, and a cybersecurity enthusiast and self-taught developer who has spent the last few years deep-diving into API security, ethical hacking, and Python-based security testing.

I started this blog because when I was learning, I struggled to find resources that were both beginner-friendly and technically honest. Most tutorials either oversimplified everything or dumped jargon without any real explanation. I wanted to change that.

This blog is my attempt to share everything I've learned — the mistakes, the breakthroughs, and the practical knowledge that actually helps you build secure systems or land a cybersecurity career.

My Work & Profiles

  • GitHub: GitHub Profile
  • I actively build API security tools, Python automation scripts, and work on real-world vulnerability research.

What You'll Find Here

This blog covers three main areas:

  • API Security — How APIs get exploited, how to test them properly, and how to build them securely. Real examples, not just theory.
  • Ethical Hacking & Penetration Testing — Beginner-to-advanced guides, tools like Burp Suite and OWASP ZAP, and practical labs you can try on platforms like TryHackMe and PortSwigger Academy.
  • Python for Security — Automating security tests, writing your own scanners, and understanding how attackers write tools so you can defend against them.

Who This Blog Is For

Whether you're a complete beginner who just heard the word "cybersecurity" for the first time, or a developer who wants to understand security from the inside — this blog is written for you. I try to keep things conversational, skip the unnecessary jargon, and always explain the "why" behind every concept.

Why Trust This Blog?

  • All content is based on hands-on learning and real tools like Burp Suite, Postman, and OWASP ZAP.
  • No copied or AI-spun content — everything is written from practical experience.
  • Focused on real-world application, not just theory.

A Little More About Me

Outside of security, I enjoy reading about system design, tinkering with small Python projects, and occasionally losing hours on CTF (Capture the Flag) challenges. I'm based in India, and I write from personal experience — not press releases.

While I am still early in my professional journey, every concept shared here is based on hands-on learning, real-world tools, and continuous experimentation in cybersecurity.

Disclaimer on Hacking Content

Everything on this blog is for educational purposes only. All hacking techniques and security testing methods are discussed in the context of ethical, authorized testing. I do not encourage or condone illegal activity of any kind. Always get written permission before testing any system you do not own.

Have a question, suggestion, or just want to say hello? Head over to the Contact Us page — I personally read and respond to every message.

Comments

Post a Comment

Popular posts from this blog

SQL Injection Explained: 5 Types, Real Examples & How to Prevent It (2026 Guide)

Image
What Is SQL Injection? Complete 2026 Guide — How It Works, Real Attack Examples, Types & Prevention With Code What Is SQL Injection? Complete 2026 Guide — How It Works, Real Attack Examples, Every Type & Prevention Code By Amardeep Maroli | April 8, 2026 | SQL Injection, Web Security, Developer Guide | 16 min read Home About Contact SQL injection has been the most exploited web vulnerability for over two decades — and it is still responsible for some of the largest data breaches every year. The 2021 LinkedIn leak of 700 million records, the 2020 Marriott breach, and thousands of smaller incidents every month all trace back to the same root cause: user input being trusted and executed as part of a database query. It sits at position A03 in the OWASP Top 10 — the globally recognised list of the most critical web application security risks. Yet despite being well-documented for 25 years, it kee...
Read more

Penetration Testing Guide: Real-World Methodology (Recon to Exploitation) [2026]

Image
What is Penetration Testing? Complete Beginner Guide 2026 — How It Works, Types, Tools & Career What is Penetration Testing? Complete Beginner Guide 2026 — How It Works, All Types, Real Tools & Career Roadmap By Amardeep Maroli  |  April 10, 2026  |  Penetration Testing, Ethical Hacking, Cybersecurity  |  16 min read Home About Contact At 2:17 AM on a Tuesday, a penetration tester was three days into an engagement with a mid-sized fintech company that processed billions in annual transactions. The company had firewalls, endpoint detection, multi-factor authentication, and quarterly vulnerability scans. Their security team believed they had things locked down. The tester had just chained three seemingly minor findings together: an API endpoint returning verbose error messages, an internal Jenkins server with default credentials accessible via a misconfigured VPN split-tu...
Read more

Phishing Scams in 2026: How They Work & How to Avoid Them

Image
What is Phishing? Types, Real Examples & How to Spot Every Attack (2026 Guide) What is Phishing? Every Type Explained with Real Examples & How to Spot Every Attack (Complete 2026 Guide) By Amardeep Maroli  |  April 9, 2026  |  Phishing, Social Engineering, Cybersecurity  |  15 min read Home About Contact In February 2024, a finance employee at a multinational company in Hong Kong received a video call from his CFO. The CFO asked him to authorise a series of urgent transfers totalling $25 million. The employee was nervous about the large amount but recognised the CFO's face, voice, and mannerisms on the call. Several other colleagues were also on the call — the employee could see their faces and hear their voices too. Every person on that call except the employee was a deepfake generated by AI. The $25 million was transferred and never recovered. That incident ill...
Read more