Skip to content
View Suspecting's full-sized avatar
πŸ’­
working rn
πŸ’­
working rn

Highlights

  • Pro

Block or report Suspecting

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Suspecting/README.md

Hi, I'm Prakhar Shakya πŸ‘‹

Cybersecurity Student | Malware Analysis | Web Application Security | Cloud Security | Security Automation

I am a B.Tech CSE Cybersecurity student focused on building practical security tools, learning through controlled labs, and documenting defensive cybersecurity workflows.

My current focus areas include malware analysis, web application security, cloud security auditing, bug bounty methodology, vulnerability triage, threat investigation, network security, and Python-based security automation.

πŸ” About Me

  • πŸŽ“ B.Tech CSE: Cybersecurity student at Lloyd Institute of Engineering & Technology
  • πŸ›‘οΈ Interested in Malware Analysis, Web Security, Cloud Security, Threat Investigation, and Defensive Security Engineering
  • πŸ§ͺ Building hands-on cybersecurity projects using Python, Kali Linux, YARA, Wireshark, Nmap, VirtualBox, AWS, FastAPI, and Electron
  • πŸ“š Learning AWS Security, Threat Intelligence, Web Application Security, Security Automation, and Cloud Misconfiguration Analysis
  • 🎯 Open to Cybersecurity Internships, Security Analyst Intern roles, Cloud Security Intern roles, and entry-level cybersecurity opportunities

🧰 Technical Skills

Cybersecurity

Malware Analysis Web Application Security Cloud Security Vulnerability Assessment Threat Analysis Network Security Digital Forensics Incident Response Bug Bounty Methodology Security Testing

Cloud Security

AWS IAM AWS S3 AWS EC2 AWS CloudTrail AWS CLI Read-Only Cloud Auditing Security Misconfiguration Detection Cloud Security Reporting

Tools & Platforms

Kali Linux Wireshark Nmap VirtualBox YARA Sysinternals Procmon Regshot TCPView Git GitHub AWS

Programming & Automation

Python Bash C++ SQL JavaScript HTML CSS Flask FastAPI BeautifulSoup Boto3

Security Engineering

Static Analysis PE Analysis Risk Scoring CLI Tool Development Desktop App Packaging JSON Reporting HTML Reporting Markdown Reporting Scope-Controlled Scanning

πŸš€ Featured Projects

☁️ CloudSec Auditor β€” AWS Security Misconfiguration Scanner

A defensive cloud security auditing tool that checks AWS environments for common security misconfigurations using local AWS CLI profiles and read-only access.

CloudSec Auditor includes a polished desktop application, auto-starting FastAPI backend, real AWS security checks, and audit-ready report generation.

Key Features

  • Real read-only AWS security scanning
  • Local AWS CLI profile support
  • IAM password policy checks
  • IAM MFA visibility checks
  • IAM access key age review
  • S3 public access checks
  • S3 encryption checks
  • S3 versioning checks
  • EC2 public SSH/RDP exposure checks
  • CloudTrail logging checks
  • Risk scoring and finding severity classification
  • JSON, HTML, and Markdown report generation
  • Electron desktop app with bundled backend
  • Linux AppImage build
  • Windows installer and portable EXE builds

Tech Stack: Python FastAPI Boto3 AWS CLI Electron React Vite Tailwind CSS PyInstaller Electron Builder JSON HTML Markdown

πŸ”— Repository: CloudSec Auditor

πŸ›‘οΈ MalwareScope β€” Malware Analysis Sandbox

A defensive malware-analysis sandbox for static and controlled analysis of suspicious files.

Key Features

  • File hashing: MD5, SHA1, SHA256
  • File type detection
  • String extraction
  • YARA rule scanning
  • PE header and import table analysis
  • Section entropy analysis
  • Heuristic risk scoring
  • JSON and HTML report generation
  • Isolated Windows VM workflow with snapshot rollback

Tech Stack: Python YARA PE Analysis VirtualBox Kali Linux Sysinternals JSON HTML

πŸ”— Repository: MalwareScope

πŸ•·οΈ thebugbounty β€” Evidence-Based Bug Bounty Triage Scanner

An authorized web-security triage scanner focused on scope control, passive-first testing, JavaScript reconnaissance, and evidence-based reporting.

Key Features

  • Scope-controlled crawling
  • Passive-first workflow
  • Authorization guard for external targets
  • Security header checks
  • HTML form analysis
  • JavaScript endpoint extraction
  • Dangerous DOM sink detection
  • Source map detection
  • XSS and SQL injection indicators
  • Confidence and risk scoring
  • JSON, HTML, and Markdown reports

Tech Stack: Python Flask BeautifulSoup Requests Rich JavaScript Recon Markdown JSON HTML

πŸ”— Repository: thebugbounty

πŸ“œ Certifications & Training

  • AWS Security Fundamentals β€” Amazon Web Services
  • AWS Cloud Quest: Cloud Practitioner β€” AWS Skill Builder
  • IBM Threat Intelligence and Hunting β€” IBM
  • IBM Cybersecurity β€” IBM
  • C++ Essentials β€” Cisco
  • Deloitte Australia Data Analytics Job Simulation β€” Forage

πŸ“Š GitHub Stats

Prakhar's GitHub Stats

Top Languages

πŸ“« Connect With Me

I build cybersecurity projects to understand how attacks work, how defenses are designed, and how security findings should be reported responsibly.

Pinned Loading

  1. CloudSec-Auditor CloudSec-Auditor Public

    CloudSec Auditor is a React + FastAPI AWS security misconfiguration scanner with mock scan mode, risk scoring, findings explorer, and timestamped JSON, HTML, and Markdown report exports.

    Python

  2. MalwareScope MalwareScope Public

    Defensive malware analysis sandbox using Python, YARA, PE analysis, hashing, entropy checks, VM isolation, and HTML/JSON reporting.

    Python

  3. thebugbounty thebugbounty Public

    Evidence-based bug bounty triage scanner for authorized web security testing, JavaScript recon, XSS/SQLi indicators, scope control, and HTML/JSON/Markdown reports.

    Python