VikashChoudhary-04/VikashChoudhary-04

GitHub: VikashChoudhary-04/VikashChoudhary-04

Stars: 1 | Forks: 0

# 👨‍💻 Vikash Choudhary | Web Application Pentesting I perform structured web application security testing focused on identifying, exploiting, and validating real-world vulnerabilities. ## 🛠️ Core Skills * Web Application Penetration Testing * SQL Injection (Authentication Bypass) * IDOR (Broken Access Control) * Cross-Site Scripting (XSS) * API Security Testing * Vulnerability Analysis & Reporting ## ⚙️ Tools * Burp Suite * Nmap * ffuf * dirsearch ## 🧠 Methodology My testing approach follows a real-world pentesting workflow: 1. Reconnaissance (attack surface mapping) 2. Input identification 3. Vulnerability testing (XSS, IDOR, SQL Injection) 4. Exploitation 5. Validation (false positive removal) 6. Reporting with business impact ## 📂 Featured Work ### 🔴 OWASP Juice Shop — Security Assessment * SQL Injection → Authentication Bypass (Admin Access) * IDOR → Unauthorized Data Access * XSS → Client-side Execution 👉 Full project: [View Assessment](https://github.com/VikashChoudhary-04/cybersecurity-portfolio/tree/main/projects/real-testing/juice-shop.md) ## 📌 What I Focus On * Real-world vulnerability exploitation * Accurate validation (no false positives) * Clear, impact-driven reporting ## 📊 GitHub Stats ![Vikash's GitHub stats](https://github-readme-stats-sigma-five.vercel.app/api?username=VikashChoudhary-04&show_icons=true&theme=tokyonight) ## 🔗 Connect * GitHub: https://github.com/VikashChoudhary-04 * LinkedIn: https://www.linkedin.com/in/vikash-choudhary-38046225b/