Skip to content
View ZishanAdThandar's full-sized avatar
🌍
πŸ” Hunting vulnerabilities, improving security.
🌍
πŸ” Hunting vulnerabilities, improving security.
215 followers · 98 following

Achievements

Achievement: Starstruckx3Achievement: Pair ExtraordinaireAchievement: QuickdrawAchievement: YOLOAchievement: Galaxy BrainAchievement: Arctic Code Vault ContributorAchievement: Pull Shark

Achievements

Achievement: Starstruckx3Achievement: Pair ExtraordinaireAchievement: QuickdrawAchievement: YOLOAchievement: Galaxy BrainAchievement: Arctic Code Vault ContributorAchievement: Pull Shark

Block or report ZishanAdThandar

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
ZishanAdThandar/README.md

Zishan Ahamed Thandar

⚑ Cyberpunk Skill Badges

🧩 About Me

I am an Offensive Security Professional with 6+ years of experience in:

  • Web & API Penetration Testing
  • Active Directory Attacks & Internal Recon
  • Vulnerability Research & Exploitation
  • Bug Bounty (150+ valid findings)
  • CTFs (Top 5% TryHackMe, ex–Top 10 HTB)
  • Security Tool Development (500+ users)

Focused on high-impact vulnerability discovery, practical exploitation, and helping companies fix real security issues before attackers find them.

🧬 Core Expertise

Offensive Security

Web Pentesting β€’ API Security β€’ AD Attacks β€’ Privilege Escalation
Business Logic Attacks β€’ Auth & Access Control Exploitation

Primary Toolset

Burp Suite β€’ Nmap β€’ Metasploit β€’ Nessus β€’ Bloodhound
CrackMapExec β€’ Impacket β€’ Hydra β€’ John β€’ Nuclei

Operating Systems

Kali Linux β€’ Arch Linux β€’ Debian β€’ Ubuntu β€’ Windows

Programming

Python β€’ Bash β€’ PHP β€’ JavaScript β€’ MySQL β€’ HTML/CSS

πŸ† Hall of Fame Mentions

Google β€’ Oracle β€’ AOL β€’ Mail.ru β€’ XiaoMi β€’ Zoho β€’ NCIIPC β€’ Shaadi.com β€’
GeeksForGeeks β€’ EC-Council β€’ PostNL β€’ EUR.nl β€’ Many more…

πŸŽ– Certifications

  • CRTA – CyberWarFare Labs
  • C3SA – CyberWarFare Labs
  • Burp Suite Mastery – Peritus Training
  • Ethical Hacking Essentials – EC-Council
  • Sololearn & Codecademy – Python, Java, PHP, HTML, CSS, Git

πŸ“š Ebooks, Notes & Checklists (Sales Section)

These products are extracted from your website and Topmate profile:

πŸ“˜ Bug Bounty Web Security Checklist

A step-by-step practical workflow for Web App testing.
Link: https://topmate.io/zishanadthandar/1523473

πŸ“‘ OSWP Notes eBook

Wireless security & Wi-Fi exploitation notes for OSWP learners.
Link: https://topmate.io/zishanadthandar/1729436

πŸ›‘ CRTA Red Team Notes

Concise internal red team notes for Windows & AD testing.
Link: https://topmate.io/zishanadthandar/1734113

πŸš€ High-Impact Security Tools (Follower Magnets)

πŸ”Ή Hacker Proxy Pro

Firefox addon for instant Burp Suite / TOR proxy switching.
➑️ https://github.com/ZishanAdThandar/HackerProxyPro

πŸ”Ή Hackify (Bash)

One-command pentest environment setup for Debian systems.
➑️ https://github.com/ZishanAdThandar/hackify

πŸ”Ή Pentester Guide (OffSec Roadmap)

Structured guide for tools, labs, certs, scripts, career path.
➑️ https://github.com/ZishanAdThandar/pentest

πŸ”Ή WebsiteDorkerPro (Python OSINT Tool)

Automated search/dork tool for reconnaissance operations.
➑️ https://github.com/ZishanAdThandar/WebsiteDorkerPro

πŸ“Š GitHub Analytics

🌐 Connect With Me

🧬 Cyberpunk Terminal Footer

Crafted in a dark terminal Β· Powered by neon Β· Built for cybersecurity.

⭐ Star & Follow to support my tools, research, and upcoming releases.

Popular repositories Loading

  1. pentest pentest Public

    Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.

    PHP 569 89

  2. hackify hackify Public

    A single script to install important Pentesting Tools and wordlists on Debian based Linux OS.

    Shell 49 7

  3. HackerProxyPro HackerProxyPro Public

    Burp Suite Proxy Toggler Lite Add-on for Mozilla Firefox.

    JavaScript 36 6

  4. WriteUps WriteUps Public

    CTF and Bug Bounty Hunting WriteUps.

    HTML 21 4

  5. WebsiteDorkerPro WebsiteDorkerPro Public

    Python 6 1

  6. hacknotes hacknotes Public

    Private Notes of Zishan Ahamed Thandar for reference

    TeX 2 2