Skip to content
View Dheerajmadhukar's full-sized avatar
:octocat:
I may be slow to respond for a while.
:octocat:
I may be slow to respond for a while.
528 followers · 8 following

Achievements

Achievement: Starstruckx3Achievement: Pull Shark
BetaSend feedback

Achievements

Achievement: Starstruckx3Achievement: Pull Shark
BetaSend feedback
Block or Report

Block or report Dheerajmadhukar

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this userโ€™s behavior. Learn more about reporting abuse.

Report abuse
Dheerajmadhukar/README.md

Let's Connect

LinkedIn Twitter Twitch Twitch YouTube YouTube

Live Sessions

HTTP/2 Request Smuggling Bash Automation
Subdomain Enum On Live Target 'rockstargames.com' Bash Automation
Content Discovery FUFF in detail + Live Bug Bounty Automation
Live Bug hunting Chaining Bugs (SSRF + Blind RCE + DNS Exfiltration)
Dive into Android Forensics for Beginner Powered by Google Developers
Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.
Android UXSS, Local File Steal, OpenRedirect [null Ahmadabad Meet]

Public CTF/Labs

  • Prototype Pollution Vulnerability Chaining

Readme Card

  • Insecure Comparison in JavaScript

Readme Card

Upcoming Sessions [ Shodan OSINT ]

Write-ups

Full ATO [Account Takeover] $$$
Android insecure IPC leads to Full Account Takeover via IDOR
Android - Chaining Vulnerabilities [ Local File Steal, Java Script injection, Open Redirect ]
Bypass of biometrics & password security functionality for Android
Origin IP found, D-DOS & WAF Cloudflare protection bypassed

  • ๐Ÿ”ญ Iโ€™m currently working on

Readme Card

Show โค๏ธ :)(:

Kindly Nominate me as a @github Stars ! If you like my contribution & brings you happy feelings, please show your support ! https://stars.github.com/nominate/

Popular repositories

  1. 4-ZERO-3 4-ZERO-3 Public

    403/401 Bypass Methods + Bash Automation + Your Support ;)

    Shell 1k 203

  2. karma_v2 karma_v2 Public

    โกทโ ‚๐š”๐šŠ๐š›๐š–๐šŠ ๐šŸ๐Ÿธโ โขพ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

    Shell 732 148

  3. Lilly Lilly Public

    Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, all the possible IPs, PORTs and SSL/TLS Certs are searched to โ€ฆ

    Shell 176 37

  4. back-me-up back-me-up Public

    This tool will check for Sensitive Data Leakage with some useful patterns/RegEx. The patterns are mostly targeted on waybackdata and filter everything accordingly.

    Shell 110 29

  5. karma_v1 karma_v1 Public

    KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Ports.

    Shell 59 11

  6. notes notes Public

    Bug Bounty & Other Stuff

    49 16