Skip to content
View s4dhulabs's full-sized avatar

Block or report s4dhulabs

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
s4dhulabs/README.md

I enjoy idealizing, designing, developing, and implementing security solutions to fix, break or
exploit digital stuff. Long story short, I need to be involved with creativity and code, of course.

With over 13 years of experience, I spent most of this time testing, developing security
mechanisms, finding software vulnerabilities, and teaching software developers how they should
avoid them. I have extensive hands-on experience either in offensive and defensive perspectives,
which includes disciplines and skills like:

  • Security Code Reviews
  • Penetration Testing
  • Secure Coding Training
  • Threat Intelligence
  • Red Teaming
  • Research & Development
  • Threat Modeling
  • DevSecOps
  • Cloud Security
  • Tooling

As an independent researcher on IoT, I've identified several vulnerabilities and obtained some
CVEs. Lately, I have been developing an experimental security framework designed to audit web
applications in python: https://github.com/s4dhulabs/vimana-framework

Also, I have researched logic flaws for a while, and from that, I have created LFWF:bD, case
studies on business logic flaws and insecure design scenarios:
https://github.com/s4dhulabs/LFWFBD

On the other hand, I'm also a sociologist interested in the anthropological approach to hacker
culture and the impacts of technology on society.

image

Anurag's GitHub stats

Popular repositories Loading

  1. vimana-framework vimana-framework Public

    Vimana is an experimental security framework that aims to provide resources for auditing Python web applications.

    Python 64 9

  2. LFWFBD LFWFBD Public

    A collection of AppSec case studies on business logic flaws and insecure design scenarios.

    5 1

  3. s4dhulabs s4dhulabs Public

    Config files for my GitHub profile.

  4. s4dhulabs.github.io s4dhulabs.github.io Public

    strolling the crooked paths of information security...

    SCSS

  5. ASVS ASVS Public

    Forked from OWASP/ASVS

    Application Security Verification Standard

    HTML

  6. gha-devsecops gha-devsecops Public

    Forked from magnologan/gha-devsecops

    DevSecOps Pipeline using SAST + DAST and SCA tools