Akash Mahajan
I've spent 24 years learning
what breaks in production.
Now I build the security tools and infrastructure that keep AI agents, LLM-powered products, and cloud systems safe. Two companies. 26 active projects. Everything I learn, I share.
"Recommended as a reference by PortSwigger, the creators of Burp Suite."
On Burp Suite Essentials — one of two security books I've written. I also co-founded null, India's open security community, and ran it across 6 cities for 11 years.
What I do
If you're building with AI, here's where I come in
Find what's broken before someone else does
Appsecco tests your apps, APIs, cloud infrastructure, and AI integrations. You get a report your engineering team can act on — not a 200-page PDF that gathers dust.
appsecco.com ↗ 02Catch cloud misconfigurations early
Kloudle scans your cloud and shows you exactly what to fix. Built for dev teams that don't have a dedicated security person but know they need one.
kloudle.com ↗ 03Teach your team what's changed
Security in the agent era looks different. I run workshops that help security teams adapt — from traditional pentesting to AI red teaming to MCP server security.
Get in touch ↓Open source
I learn by building. Here's what I'm working on.
26 active projects. These are the ones I'd show you first.
IndusClaw
PersonalIndia-centric open-source AI agent platform.
Vulnerable MCP Servers Lab
AppseccoDeliberately vulnerable MCP servers for offensive and defensive training.
ccrank
PersonalClaude Code usage leaderboard and analytics.
agent-browser
PersonalStealth browser automation CLI for security and agent workflows.
Raptor
AppseccoClaude Code configured for adversarial security workflows.
Open CVDB
KloudleOpen cloud vulnerability and misconfiguration database.
Say hello
I like hearing from people who build things.
Fastest way is a DM on X. I read everything.
Or leave a message here
Sent. I'll get back to you.