VikashChoudhary-04

Follow

Vikash Choudhary VikashChoudhary-04

Follow

🔍 Focused on mastering Python, Linux, Networking & Ethical Hacking. Not just learning to hack—learning to protect. 🌱 Small progress daily = big results

1 follower · 2 following

VikashChoudhary-04/README.md

👨‍💻 Vikash Choudhary | Web Application Pentesting

I perform structured web application security testing focused on identifying, exploiting, and validating real-world vulnerabilities.

🛠️ Core Skills

Web Application Penetration Testing
SQL Injection (Authentication Bypass)
IDOR (Broken Access Control)
Cross-Site Scripting (XSS)
API Security Testing
Vulnerability Analysis & Reporting

⚙️ Tools

Burp Suite
Nmap
ffuf
dirsearch

🧠 Methodology

My testing approach follows a real-world pentesting workflow:

Reconnaissance (attack surface mapping)
Input identification
Vulnerability testing (XSS, IDOR, SQL Injection)
Exploitation
Validation (false positive removal)
Reporting with business impact

📂 Featured Work

🔴 OWASP Juice Shop — Security Assessment

SQL Injection → Authentication Bypass (Admin Access)
IDOR → Unauthorized Data Access
XSS → Client-side Execution

👉 Full project: View Assessment

📌 What I Focus On

Real-world vulnerability exploitation
Accurate validation (no false positives)
Clear, impact-driven reporting

📊 GitHub Stats

🔗 Connect

GitHub: https://github.com/VikashChoudhary-04
LinkedIn: https://www.linkedin.com/in/vikash-choudhary-38046225b/

Pinned Loading

MiniCorp-Red-Team-Simulation MiniCorp-Red-Team-Simulation Public

End-to-end red team simulation: external attacker → web compromise → internal pivot → Active Directory takeover → professional report.

1
ScopeForgeX ScopeForgeX Public

ScopeForgeX — A question-driven ethical hacking workflow automation tool that provides a single CLI dashboard to run recon/enum/vuln tools, generate final target lists, and produce organized output…

Python 1
subhunt subhunt Public

Modular subdomain enumeration framework written in Go

Go 1
mitre-mapped-incident-report mitre-mapped-incident-report Public

SOC incident investigation project demonstrating MITRE ATT&CK mapping, Splunk-based detection analysis, and professional incident reporting workflows.

1
recon-toolkit recon-toolkit Public

My personal automation + methodology toolkit for reconnaissance and enumeration.

Shell 1
web-attack-monitoring web-attack-monitoring Public

Splunk-based web attack monitoring project focused on detecting suspicious HTTP activity, brute force attempts, and common web attacks using log analysis and detection engineering.

1