No more typing reviews! Try our Samantha, our new voice AI agent.

OYO Rooms VAPT

Omkar Singh - PeerSpot reviewer
Omkar Singh
Cyber Security Analyst at digitaltrack solution pvt.ltd
0 people affected
2 people managed
1 month project

Project Description

OYO Rooms – VAPT Project Summary

Performed a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) engagement for OYO Rooms covering Web Application, APIs, and Network Infrastructure security assessment.

Scope of Assessment

  • Web Application Security Testing
  • REST API Security Testing
  • Internal & External Network VAPT
  • Authentication and Authorization Testing
  • Business Logic Validation
  • OWASP Top 10 Security Assessment

Key Activities Performed

  • Identified vulnerabilities in web and API environments
  • Tested authentication mechanisms, session management, and access controls
  • Conducted network scanning, enumeration, and vulnerability validation
  • Performed manual and automated penetration testing
  • Validated misconfigurations, exposed services, and insecure endpoints
  • Assessed input validation, rate limiting, and API authorization controls

Tools & Methodologies Used

  • Burp Suite
  • Nmap
  • Nessus
  • Postman
  • OWASP Testing Methodology
  • Manual Exploitation Techniques

Deliverables

  • Detailed VAPT Report with risk ratings
  • Proof of Concept (PoC) for identified vulnerabilities
  • Remediation recommendations and mitigation guidance
  • Revalidation support after fixes implementation

Outcome

Successfully identified and reported critical, high, medium, and low-risk security issues, helping strengthen the overall security posture of OYO Rooms’ applications and network infrastructure.

Highlights

Under budget

Difficulties

Management had to be convinced
  • New Delhi (IN)28.635877.2244