Look, I'm not going to pretend to be a senior full-stack developer with years of experience. I'm a learning developer from India who started coding seriously around late 2023. I'm still figuring things out, one tutorial at a time.
๐ Click to see my honest developer profile
const sunny = {
location: "India ๐ฎ๐ณ",
actualRole: "Student / Junior Developer / Security Enthusiast",
honestSkills: [
"JavaScript (basics)",
"HTML/CSS",
"Python (building security tools!)",
"Bash scripting",
"Security reconnaissance",
"Copying from Stack Overflow"
],
realityCheck: {
frontend: [
"React (following tutorials)",
"Basic HTML/CSS",
"Tailwind (sometimes)"
],
backend: [
"Node.js (learning)",
"Express (copy-paste mostly)",
"Python (actually building stuff!)"
],
security: [
"OSINT & Reconnaissance",
"Subdomain enumeration",
"Security automation with Python",
"Bug bounty (learning the ropes)"
],
databases: ["MongoDB (when it works)", "PostgreSQL (getting better)"],
tools: [
"Git (still confuse push and pull)",
"Docker (what's a container?)",
"Nmap, Subfinder, Httpx (security arsenal)"
]
},
currentlyLearning: "Everything. Seriously, everything.",
latestProject: "AutoRecon - Automated reconnaissance framework ๐",
portfolioStatus: "20 repos, 3 have stars, most are unfinished",
openToCollaborate: true,
willingToLearn: "Absolutely! ๐ฏ"
};|
๐ Learning
|
๐ Debugging
|
๏ฟฝ AutoRecon โญ LATEST
Automated Reconnaissance Framework for Bug Bounty Hunters
Modular Python framework automating the reconnaissance phase โข 5-Phase pipeline โข Professional reports with risk analysis โข OSINT & passive recon
๐ฏ Key Features:
- ๐ 5-Phase Automated Pipeline - Complete reconnaissance workflow from subdomain discovery to reporting
- ๐ฏ Subdomain Enumeration - Powered by Subfinder with Certificate Transparency
- ๐ Live Host Detection - Multi-threaded HTTP/HTTPS probing with Httpx
- ๐ Port Scanning - Service version detection with Nmap (top 1000 ports)
- ๐ URL Collection - Historical endpoint discovery via Wayback Machine
- ๐ Professional Reports - Comprehensive summaries with risk categorization
- ๐งฉ Modular Architecture - Run phases independently or together
- ๐ Organized Results - Structured output per target
๐ Automated Workflow:
Subfinder โ Httpx โ Nmap โ Waybackurls โ Report Generation
๐ ๏ธ Tech Stack: Python โข Subfinder โข Httpx โข Nmap โข Waybackurls โข Go
๏ฟฝ๐ Acquisitions API
Production-ready RESTful API with advanced security & CI/CD
Modern backend with JWT auth โข Rate limiting & bot protection โข Full CI/CD pipeline โข Docker containerization โข 38% test coverage
Key Features:
- ๐ JWT Authentication & Role-based Access Control
- ๐ก๏ธ Arcjet Security (Bot Detection, Rate Limiting)
- ๐ณ Multi-stage Docker builds & Docker Compose
- ๐ Automated CI/CD with GitHub Actions
- ๐๏ธ PostgreSQL with Drizzle ORM
- ๐งช Jest testing with coverage reports
๐ SmartController-SIH
My most "successful" project with 1 whole star and 2 forks!
Built for Smart India Hackathon โข Actually has working features โข Uses React & Vite
๐ Other Repos (The Real Talk)
Most of my other 17 repos are:
- ๐ Tutorial follow-alongs (MERN-Learning, StartedBackend, Backend)
- ๐งช Experiments that didn't go anywhere
- ๐ Course exercises (git_test, skills-communicate-using-markdown)
- ๐๏ธ Abandoned projects (we don't talk about those)
Total Stars Across All Repos: Still counting... ๐
|
|
Currently Learning:
- Python Security Tools: Building AutoRecon framework
- React: Still learning the hooks
- Node.js & Express: Getting better at it!
- PostgreSQL & Drizzle ORM: Database queries
- Kubernetes: Watching tutorials
- Cybersecurity: OSINT & reconnaissance techniques
- Clean Code: Future goal
Currently Building:
- AutoRecon: Automated bug bounty reconnaissance framework โญ
- Acquisitions API: Production-ready backend with CI/CD
- Tutorial projects: Hoping to finish
- Small apps to understand concepts
- A portfolio that's not a template
Recent Accomplishments:
- โ
Built AutoRecon with 5-phase automated pipeline
- โ
Integrated industry-standard security tools
- โ
Created modular Python architecture
- โ
Production API with JWT auth & CI/CD
- โ
Learning cybersecurity & bug bounty hunting
Realistic 2026 Goals:
- Get a real job as a developer or security researcher
- Contribute to open source security projects
- Find my first bug bounty
- Master Python for security automation
- Build one project people actually use
- Maybe learn TypeScript?Debugging โโโโโโโโโโโโโโโโโโโโโ 65%
Googling Errors โโโโโโโโโโโโโโโโโโโโโ 40%
Reading Docs โโโโโโโโโโโโโโโโโโโโโ 15%
Writing Code โโโโโโโโโโโโโโโโโโโโโ 10%
Staring at Screen โโโโโโโโโโโโโโโโโโโโโ 25%
"It works on my machine" - Every developer ever
"I'll just copy this from Stack Overflow" - Me, daily
"Why is it not working?" - Also me, daily
"Oh wait, I forgot the semicolon" - Me, when coding in JavaScript
I'm active on GitHub and open to:
- ๐ Code reviews (low expectations, please)
- ๐ Issues if something's broken (there's a lot)
- ๐ง PRs to fix my messy code (seriously, please)
- โญ Stars if you're feeling generous
๐ Reading docs I don't understand yet | ๐ฎ Watching tech YouTubers | ๐ Browsing GitHub for inspiration
๐ญ Planning the project I'll build "someday" | ๐ด Dreaming in console.log()
If you made it this far, you're probably as curious as I was when I wrote this.
Remember: We all start somewhere. This is my somewhere.
If you're learning too, let's learn together! ๐
๐ฌ "Talk is cheap. Show me the code." - Linus Torvalds
(Still working on having good code to show...)