We’re excited to bring you another Hacker Spotlight, featuring Anushka Shrestha, a talented security researcher from Nepal who competed in Bugv’s Live Hacking Event 2026.
Bugv’s Live Hacking Events create an intense, collaborative space for Nepal’s emerging security talents to test real-world skills. Anushka stood out by identifying a solid vulnerability during the competition, demonstrating her sharp insight.
In this special International Women’s Day edition (March 8), Anushka shares her cybersecurity journey, event experience, tools, challenges as a woman in the field, and advice for newcomers. Her story from movie-inspired curiosity to practical bug hunting shows the power of persistence and new perspectives.
Let’s hear directly from Anushka.
1. Can you share a bit about yourself and what sparked your interest in cybersecurity?
Hello, I am Anushka Shrestha, a security researcher based here in Nepal. Currently pursuing my bachelor’s degree in Information Technology from Padma Kanya Multiple Campus. The thought of getting into cybersecurity struck me at a young age. It may sound dramatic, but I was more intrigued into getting into this field after watching the movie Players. The chase and the defense got me excited. That became a catalyst for sure.
2. How did you first get into ethical hacking? Was there a specific moment, challenge, or influence that made you dive in?
I first did my fair share of exploring different fields which I had my interest in. And after thorough digging, I made up my mind that nothing could excite me more than working in ethical hacking where every day brings a new challenge, leading to learn and explore each following day. I always hated the thought of monotonous work so ethical hacking was the perfect choice.
3. Outside of cybersecurity, what hobbies or pursuits do you enjoy in your personal time?
Apart from cybersecurity, I do have my interests in playing guitar and singing, drawings and reading novels. It helps me escape from the stress from the load of constant hunting hours.
4. Tell us about your participation in Bugv’s Live Hacking Event 2026, what was your approach to finding vulnerabilities during the competition?
Getting a chance to take part in Bugv’s Live Hacking Event was an eye opener for me, with so many talented fellow researchers it felt surreal to be in the same place as them, since I am a newbie in this field. With all the dedicated participants, I took upon a challenge for myself to find a critical vulnerability that existed. I got to learn the different methodology of all the participants, which was very helpful. And I was really glad to see participation of other female fellow participants since it is a rare sight to see in this field, for which I am really thankful for Bugv for giving us this opportunity.
5. You reported a solid bug; walk us through that find. What made it exciting, and what did you learn from the process?
I faced a challenge in the beginning but that challenge turned out to be a blessing for me, because it made me explore new ways which normally I didn’t try and missed it during my normal hunting session. The discovery of the vulnerability was facilitated by an in-depth traffic analysis using Burp Suite, allowing me to intercept and manipulate the underlying request logic. I figured out that Burp Suite is the goldmine if used correctly, every passing requests if attentively monitored could become a blueprint for the application’s hidden logic and its eventual exploitation.
6. What are your go-to tools for bug hunting, and how do they shape your workflow?
My go-to tools for my bug hunting would be Nmap, Censys, Shodan, FFUF. Beyond the essentials, I use Nuclei for rapid, template-based vulnerability scanning and Subfinder for deep subdomain discovery. These tools automate the broad reconnaissance, freeing me to focus my manual Burp Suite efforts on exploiting the high-value logic flaws I’ve identified.
7. As a woman in cybersecurity, what barriers have you faced in Nepal’s tech scene, and how did you overcome them?
The main challenge I faced in cybersecurity as a woman would be seeing very less participations of female in this field. If there were more females, it would have been a stronger community where shared support turns individual challenges into collective success.
8. What’s your best tip for beginner hackers, especially women, starting bug bounties?
The best tip for beginner specially woman researchers would be seeking mentorship from someone capable. It is a game changer and could save a lot of time. At beginning it is very natural to feel stuck and overwhelmed from all the topics to learn. So a good mentor would guide us through those tough time.
9. How has Bugv helped you grow as an ethical hacker? In what specific ways has the platform, events, or community supported your journey and skills?
Even with just one live session, Bugv has been a catalyst for my growth. It shifted my mindset from theoretical learning to real-world execution, forcing me to find vulnerabilities under pressure and navigate hardened systems.
10. On International Women’s Day, what message do you have for aspiring female hackers in Nepal to break into the field?
I would like to say “To every aspiring female hacker in Nepal: Stop watching and start hacking. The field needs your perspective, but it only changes when you show up, participate in the events, and let your bugs do the talking.”
Congratulations to Anushka Shrestha for her impressive performance at Bugv’s Live Hacking Event 2026. Her fresh perspective and determination embody the talent driving Nepal’s cybersecurity future.
Stay tuned for more Hacker Spotlights featuring top researchers from the Bugv community.
