Skip to content
View devanshbatham's full-sized avatar
Grepping Internet, One line at a time
Grepping Internet, One line at a time
1.9k followers · 0 following

Achievements

Achievement: Pull Sharkx2Achievement: Pair ExtraordinaireAchievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Pull Sharkx2Achievement: Pair ExtraordinaireAchievement: Starstruckx4Achievement: YOLOAchievement: QuickdrawAchievement: Arctic Code Vault Contributor

Highlights

Organizations

@GitHubBounty

Block or report devanshbatham

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
devanshbatham/README.md

Hi, this is Devansh ⚡. I break things for a living and help others understand why they broke.

I've spent the nearly a decade in security, from hunting bugs, to studying DNS and supply chain weaknesses, to auditing smart contracts, and reviewing vulnerability reports as a triager at HackerOne.

Along the way, I've reported hundreds of vulnerabilities to 100+ companies, built some open-source tools 🏗️ that people seem to find useful (over 10k+ GitHub Stars), and led large-scale penetration tests across every kind of infrastructure imaginable.

I’ve seen security from every angle - bug hunter, vulnerability researcher, triager, blockchain security auditor, open source developer, and now as Team Lead, Technical Services (Triage) at HackerOne. .

Projects 🏗️

Project Description
ParamSpider Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
FavFreak Making Favicon.ico based Recon Great again
OpenRedireX A fuzzer for detecting open redirect vulnerabilities
headerpwn Fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
rayder Lightweight tool for orchestrating and organizing bug hunting recon / pentesting command-line workflows
CertEagle Weaponizing Live CT logs for automated monitoring of assets
DNSleuth Spy on the DNS queries your machine is making
revit Command-line utility for performing reverse DNS lookups
heaptruffle Mine URLs from browser's heap snapshot for fun and profit
ip2cloud Check IP addresses against known cloud provider IP address ranges
revwhoix Utility for reverse WHOIS lookups using whoisxml API
dnsaudit Command-line utility for auditing DNS configuration using Zonemaster API
Quaithe Execute multiple commands in parallel for blazing-fast performance
ip2asn Quickly map IP addresses to their respective ASN
getresolvers Utility to fetch freshly updated DNS resolvers
Watson Note management and search utility for your terminal
realm Utility for recursively traversing SSL/TLS certificates for collecting DNS names
getsan Fetch and display DNS names from SSL/TLS cert data

Socials

  • X
  • LinkedIn
  • Email: devanshbatham009 [at] gmail [dot] com

Pinned Loading

  1. Awesome-Bugbounty-Writeups Awesome-Bugbounty-Writeups Public

    A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

    Python 5.5k 1.1k

  2. ParamSpider ParamSpider Public

    Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

    Python 3k 469

  3. FavFreak FavFreak Public

    Making Favicon.ico based Recon Great again !

    Python 1.3k 176

  4. OpenRedireX OpenRedireX Public

    A fuzzer for detecting open redirect vulnerabilities

    Python 779 149

  5. rayder rayder Public

    A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows

    Go 299 37

  6. headerpwn headerpwn Public

    A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers

    Go 353 40