Skip to content
View imharshitaa's full-sized avatar
9 followers · 50 following

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull Sharkx2Achievement: Quickdraw

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull Sharkx2Achievement: Quickdraw

Block or report imharshitaa

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
imharshitaa/readme.md

Hi, I’m Harshitaa :) I like to hunt for bugs & build code to secure applications.

🛡️ Security Research Engineer 🛡️ PenTester 🛡️ Certified Ethical Hacker (CEH)

  • @Linkedin: https://www.linkedin.com/in/harshitaa-ashish-85767621a/
  • @Website: https://imharshitaa.github.io/root0zaki/
  • @Medium: https://medium.com/@imharshitaa
  • @Credly: https://www.credly.com/users/harshitaa-ashish/badges#credly
  • @Bugcrowd: https://bugcrowd.com/h/root0zaki

Featured Projects

ToolKit:

Modular security toolkit for building and integrating application security workflows
Repo: https://github.com/imharshitaa/toolkit
Stack: Security Automation, CLI Tools, Solution implementation,
Highlight: Provides reusable security utilities and modular components to accelerate security testing and tooling development

BugPilot:

AI-assisted vulnerability detection and bug analysis system
Repo: https://github.com/imharshitaa/bugpilot
Stack: Python, LLMs, AI Security, Static Analysis
Highlight: Enhances bug discovery and triaging using AI-driven analysis to reduce manual effort and improve detection accuracy

DevSecKit:

CI/CD security scanning framework for DevSecOps pipelines
Repo: https://github.com/imharshitaa/DevSecKit
Stack: DevSecOps, GitHub Actions, SAST, SCA, Secrets, IaC, DAST, IAST
Highlight: Automates security checks and scans in pipelines with minimal setup and optimized workflow execution

playbox:

Vulnerable application lab environment for security testing and exploitation practice
Repo: https://github.com/imharshitaa/playbox
Stack: Web Security, Docker, Vulnerable Apps, Pentesting Labs
Highlight: Provides controlled vulnerable scenarios for testing exploits, tools, and real-world attack techniques

AIvector:

AI-driven penetration testing assistant for automated security analysis
Repo: https://github.com/imharshitaa/AIvector
Stack: Python, LLMs, Offensive Security, Automation
Highlight: Uses AI to assist in attack surface analysis and vulnerability identification during penetration testing workflows

APIvector:

API security testing and penetration testing toolkit
Repo: https://github.com/imharshitaa/APIvector
Stack: API Security, REST, Python, Automation, OWASP API Top 10
Highlight: Focused on identifying API-specific vulnerabilities through automated testing and attack simulation techniques

setup

Python Postman GitHub Kali Burp Suite Bash Linux Git Metasploit PowerShell Cursor VSCode GitHub Actions Docker OWASP MITRE ATT&CK OWASP ZAP GitLab CI

Security Architecture Code Scan Review Security Automation AppSec

Vulnerability Research Bug Analysis Recon Exploit Development Threat Modeling

What I do

  • Application, API & Web Product Security
  • Secure Code Development (Offensive & Defensive)
  • Threat Intelligence & Research
  • DevSecOps & Secure Automation workflows
  • Open Source tools & Vulnerability analysis

Profile Summary

Pinned Loading

  1. AIvector AIvector Public

    Python 2

  2. APIvector APIvector Public

    Python 1

  3. DevSecKit DevSecKit Public

    Python 1

  4. bugpilot bugpilot Public

    Python 1

  5. playbox playbox Public

    Python 1

  6. toolkit toolkit Public

    Python 1