Skip to content
View index-oss's full-sized avatar
🎯
Focusing
🎯
Focusing

Block or report index-oss

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
index-oss/README.md

Mohit Sharma

Backend Engineer · Security Systems · Automation

Every system has a flaw. I just have a talent for finding them.

Profile Views Portfolio LinkedIn Email


What I Build

I design backend and security systems that operate under real-world constraints — where correctness, controlled behavior, and exploitability detection matter more than surface-level features.

I don't start with a stack. I start with the problem.


🏆 Recognition

Role Organization Period
Campus Mantri — Official Representative GeeksforGeeks Jun 2026 – Dec 2026
Appointed by Sandeep Jain, Founder & CEO Satyug Darshan Institute of Engineering & Technology Active

🔐 Featured Projects

SecureStack v7.0 — Hybrid Security Intelligence Engine

Problem: Conventional scanners find what exists. They don't find how it can be abused.
Built: A stealth recon + logic vulnerability engine that bypasses WAFs, maps JS attack surfaces, and detects IDOR/BOLA through taint analysis and exploit simulation.
Python Security OWASP Red Team

🌐 Web Interface → potentialThreat


CVEStrike — Automated Threat Intelligence Bot

Problem: Security teams drown in CVE noise with no prioritization layer.
Built: A fully automated pipeline that ingests CISA feeds, summarizes threats via LLM, and delivers structured reports to Telegram — zero manual intervention.
Python LLM Automation Telegram API


Self-Heal AI — Autonomous Linux Security Agent

Problem: Server failures and intrusions often go undetected until damage is done.
Built: An agent that monitors Apache/NGINX logs in real time, detects anomalies, blocks malicious IPs, and auto-recovers crashed services without human input.
Python Linux AI Systems


Spiderweb Crawler — Controlled Website Recon

Problem: Naive crawlers loop infinitely and produce unreliable structural maps.
Built: A recursive crawler that enforces cycle prevention, deduplication, and controlled traversal depth — maps full site structure cleanly.
Python Web Scraping Penetration Testing


Red-team framework for packet injection & WAF fingerprinting · Autonomous AI bug-hunting pipeline (Recon → Exploit → Report) · AI-powered academic tooling for B.Tech students.


🛠️ Stack

Tools are chosen based on the problem — not the other way around.


📊 Activity

GitHub Streak

Activity Graph


🎯 Open To

  • Backend Engineer · Software Engineer Intern · Junior roles
  • Work involving real system development, automation, or security engineering
  • Teams that value engineering depth, clean design, and end-to-end ownership

Let's build something that doesn't break.

📧 infosec.mohitsharma@gmail.com · LinkedIn · Portfolio · GitHub· Twitter

Pinned Loading

  1. Self-Heal-Ai Self-Heal-Ai Public

    SelfHeal-AI is an AI-powered self-healing security agent for Linux servers. It monitors Apache/NGINX logs in real time, detects anomalies, blocks malicious IPs, auto-recovers crashed services, send…

    HTML 2

  2. CVEStrike CVEStrike Public

    CVEStrike is a daily cybersecurity intelligence bot that fetches the latest CISA security alerts, summarizes them using a local LLM via OpenRouter, and sends formatted threat reports to Telegram an…

    Python 1

  3. Exbow-Offensive Exbow-Offensive Public

    EXBOW‑Lite is an autonomous AI-powered bug-hunting tool that automates the full bug bounty workflow: Recon → AI analysis → Exploitation → Reporting. It integrates LLMs, subdomain discovery, vulnera…

    Python

  4. Spiderweb-Crawler Spiderweb-Crawler Public

    A web crawler designed to assist penetration testers by mapping attack surfaces, discovering endpoints, parameters, and common security misconfigurations.

    HTML

  5. secureStack-7.0 secureStack-7.0 Public

    SecureStack v7.0 is a hybrid security engine that combines stealth recon, deep asset discovery, and logic-level vulnerability detection (IDOR/BOLA) to identify real-world exploitable flaws in web a…

    Python

  6. Evasion Evasion Public

    Advanced Red-Team Framework for network reconnaissance, packet injection, and WAF fingerprinting. Currently undergoing v2.0 architectural upgrades. [OFFLINE]

    Python