Skip to content
View bb1nfosec's full-sized avatar
104 followers · 134 following
  • India

Achievements

Achievement: YOLOAchievement: Pull Sharkx2Achievement: Pair ExtraordinaireAchievement: Starstruckx2Achievement: Arctic Code Vault Contributor

Achievements

Achievement: YOLOAchievement: Pull Sharkx2Achievement: Pair ExtraordinaireAchievement: Starstruckx2Achievement: Arctic Code Vault Contributor

Block or report bb1nfosec

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
bb1nfosec/README.md
bb1nfosec — terminal dossier. A prompt types out: independent security researcher, critical-infrastructure systems engineer. Letterhead reads chanakya, bheeshma, vaathi — strategy, guardianship, teaching. India, est. 2009.

~ whoami

Independent security researcher · cybersecurity systems engineer on critical infrastructure. I find vulnerabilities by reading source, work the seam where AI systems meet offensive and defensive security, and build security education that doesn't require English to enter.

~/focus

Focus areas: AI security and LLM red-teaming; source-code review; supply-chain and OPSEC; RISC-V and hardware auditability.

~/operations

chanakya-opsec ⭐ 3
multi-layer OPSEC failure analysis — how operational security actually breaks 		bheeshma ⭐ 2
runtime telemetry for npm dependencies — watches what packages do, not what they claim 		vaathi ⭐ 21
open-source cybersecurity learning OS — zero to practitioner, in your own language
dvai ⭐ 5
Damn Vulnerable AI Ecosystem — zero-infrastructure red-team range for AI systems 		distill ⭐ 4
cuts LLM input cost 40–75% with repo-aware token reduction 		Information-Security-Tasks ⭐ 180
daily infosec problem statements — forensics, OSINT, malware analysis, red and blue team

The names are the thesis — chanakya the strategist, bheeshma the guardian, vaathi the teacher. Old disciplines, new attack surface.

~/track-record

Bug bounty across HackerOne, Bugcrowd, Immunefi, Code4rena and YesWeHack — findings argued from source, not scanner output. BalCCon2k18 (Novi Sad): hybrid-cloud red teaming against Azure AD.

~/signals

X · @bbinfosec  ·  ORCID · 0009-0001-7412-0211  ·  India

Pinned Loading

  1. bheeshma bheeshma Public

    Runtime dependency-behavior monitor for Node.js. Two engines: in-process telemetry + an out-of-process (strace) trust boundary that sees native egress & persistence. Defense-in-depth for npm supply…

    JavaScript 3 2

  2. dvai dvai Public

    DVAI - Damn Vulnerable AI Ecosystem. Open-source, zero-infrastructure-cost AI red team training range.

    TypeScript 5

  3. vaathi vaathi Public

    🛡️ Vaathi — India's Open Source Cybersecurity Learning OS. From zero to ethical hacker — in your language, at your pace, on your machine.

    Python 21 6

  4. Information-Security-Tasks Information-Security-Tasks Public

    This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on…

    Python 180 56

  5. chanakya-opsec chanakya-opsec Public

    Multi-layer OPSEC failure analysis framework - Research-grade threat modeling and signal correlation

    Python 3 3

  6. skim skim Public

    Runtime token proxy + intelligence dashboard for LLM tools. Intercepts API calls, strips waste, tracks costs — for individual developers and Fortune 500 teams.

    Python 4 1