Hi, I'm Arpit Kafle

I'm an 18-year-old aspiring ethical hacker and cybersecurity researcher from Nepal. I focus on penetration testing, API security, and bug bounty hunting. Known for responsibly disclosing security vulnerabilities to Nepal's Election Commission. Currently pursuing the Google Cybersecurity Professional Certificate and the APISEC Certified Practitioner certification.

Ethical Hacking Penetration Testing API Security Bug Bounty Python JavaScript HTML CSS

Connect Resume

Projects

What I've Built

I'm currently pursuing courses and building skills. Here are my projects so far — more coming soon.

jwtdrive

A focused recon tool for JWT public-key discovery — brute-forces JWKS / public-key endpoints, extracts a compatible PEM key, and streamlines RS256 → HS256 algorithm-confusion workflows.

Python · API security tooling

GitHub

Anime Nexus

A cyberpunk-themed anime streaming web app with a terminal/hacker aesthetic — multi-provider streaming, instant episode lists, and AniList-powered search.

JavaScript · Full-stack web app

GitHub Live Site

Family Monitor

A React Native + Expo family-safety app: continuous location sharing, battery-status reporting, and photo check-ins between a child device and a parent dashboard.

React Native · Expo · Mobile

GitHub

Growing Up

A referral-based course-selling platform built for Nepali users, connecting learners with curated courses through a referral rewards model.

EJS · Node.js · Web platform

GitHub

Achievements

Notable Milestones

Notable findings and contributions while learning and exploring security and web development.

Responsible Disclosure — Election Commission Nepal

Discovered an information disclosure issue in an API response on the Election Commission of Nepal website and reported it responsibly; the issue was acknowledged and fixed.

Reported: 2025

Founding Member — Arniko Hack Club

Founding member of Arniko Hack Club, a Nepali community of student developers, hackers, and makers building and shipping projects together.

arnikohackclub.com

Campfire Biratnagar — teen game jam organized by Arniko Hack Club in Biratnagar, Nepal

Organized Campfire Biratnagar — Nepal's Biggest Teen Game Jam

Helped organize Campfire Biratnagar, Nepal's biggest teen game jam, hosted by Arniko Hack Club — bringing young developers together to design and build games.

Biratnagar, Nepal

Google Cybersecurity Certificate

Currently pursuing the Google Cybersecurity Professional Certificate, building solid foundations in network security, risk management, and incident response.

In Progress

APISEC Certified Practitioner

Currently pursuing the APISec Certified Practitioner certification — studying API security testing fundamentals and OWASP API Top 10.

In Progress

Blog

Notes & Write-ups

Notes, write-ups, and short posts about web development and cybersecurity.

Responsible Disclosure Write-up — Election Commission

A short write-up describing the responsible disclosure process and lessons learned.

Dec 2025

Read Post

Getting Started with API Security

Notes from the APISec Certified Practitioner course and quick tips for secure APIs.

Nov 2025

Read Post

Python for Security Automation

Exploring how Python scripts can automate repetitive security tasks and recon workflows.

Coming Soon

Contact

Get in Touch

Have a question or want to collaborate? Feel free to reach out — I'd love to hear from you.

Let's Connect

I'm always open to connecting with fellow developers, cybersecurity enthusiasts, and curious minds. Reach me through the form or any of these platforms.

arpitkaflee@gmail.com