Skip to content
View krishanumishra778's full-sized avatar

Block or report krishanumishra778

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please donโ€™t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this userโ€™s behavior. Learn more about reporting abuse.

Report abuse
krishanumishra778/README.md

Typing SVG


LinkedIn Gmail HackerOne GitHub

๐Ÿ” About Me

class KrishanuKaundilya:
    role       = "CEH Master | VAPT Specialist | AI Security Researcher"
    location   = "Indore, MP, India ๐Ÿ‡ฎ๐Ÿ‡ณ"
    experience = "2+ years hands-on VAPT"

    focus = [
        "Web App & API Penetration Testing",
        "AI / LLM Security & Prompt Injection",
        "DAST Scanner Rule Development",
        "Agentic Security Automation",
    ]

    certifications = [
        "CEH Master โ€” EC-Council #ECC0285763419",
        "Certified Ethical Hacker v13 (CEH)",
        "CEH Practical",
    ]

    currently_learning = [
        "Active Directory Exploitation",
        "AI Red Team Methodology",
        "Network Pivoting & Lateral Movement",
    ]

    fun_fact = "I delivered VAPT training to law enforcement officers at CAPT Bhopal ๐Ÿ‘ฎ"

๐Ÿ›ก๏ธ Certifications & Credentials

CEH Master CEH v13 CEH Practical

๐Ÿš€ Open Source Security Tools

Tool Description Stack Stars
๐ŸŽฏ nuclei-template-library Custom Nuclei YAML templates from real VAPT engagements โ€” IDOR, Business Logic, XSS, Missing Headers YAML ยท Nuclei โญ
๐Ÿ” recon-automation-tool Full recon pipeline: Subfinder โ†’ httpx โ†’ Nuclei โ†’ HTML Report Python ยท BeautifulSoup4 โญ
๐Ÿ“„ vapt-report-generator JSON findings โ†’ Professional PDF + HTML VAPT reports Python ยท ReportLab โญ
๐Ÿง  prompt-injection-toolkit 31 payloads for AI/LLM security โ€” OWASP LLM Top 10 mapped Python ยท requests โญ

๐Ÿงฐ Tech Stack & Tools

Pentesting & VAPT

Burp Suite Metasploit Nmap Nuclei SQLMap FFUF Nikto Wireshark

Programming & Scripting

Python Bash

AI / LLM Security

OWASP LLM Prompt Injection Claude Code

Recon & OSINT

Subfinder Shodan httpx Amass

Standards & Compliance

OWASP ISO 27001 CVSS v3.1 PTES

๐Ÿ“Š GitHub Stats

GitHub Streak

๐ŸŽฏ Bug Bounty & Research

HackerOne

  • ๐Ÿ”ด IDOR โ€” Independently identified unauthorized P2P trading history access via userId parameter manipulation on a cryptocurrency exchange platform (confirmed valid)
  • ๐ŸŸ  Business Logic Flaw โ€” Exchange API accepting negative/zero amounts returning HTTP 200 with invalid conversion results (confirmed valid)
  • ๐Ÿ”ฌ Both findings confirmed real-world exploitability via HackerOne

๐ŸŽค Speaking & Training

Event Topic Audience
๐ŸŽ“ CAPT Bhopal Ethical Hacking & Attacker Methodology Law Enforcement Officers
๐Ÿ’ผ Crawl Digitally Phishing Attack Awareness Corporate Team

๐Ÿ“ˆ Activity Graph

Krishanu's github activity graph

๐Ÿ† GitHub Trophies

trophy

๐Ÿ’ฌ "Break it before someone else does."

Profile Views

Popular repositories Loading

  1. recon-automation-tool recon-automation-tool Public

    Automated recon pipeline: Subfinder โ†’ httpx โ†’ Nuclei โ†’ HTML Report | Python, BeautifulSoup, dnspython

    Python

  2. nuclei-template-library nuclei-template-library Public

    Custom Nuclei YAML templates built from real VAPT engagements | IDOR, Business Logic, XSS, Missing Headers | OWASP Top 10 mapped

    Python

  3. vapt-report-generator vapt-report-generator Public

    Professional VAPT report generator: JSON findings โ†’ PDF + HTML | ReportLab | CVSS v3.1 scoring

    Python

  4. prompt-injection-toolkit prompt-injection-toolkit Public

    AI/LLM security testing tool | 31 payloads: Prompt Injection, Jailbreak, Leak, DoS | OWASP LLM Top 10

    HTML

  5. krishanumishra778 krishanumishra778 Public

    CEH Master | VAPT Specialist | AI Security Researcher