Skip to content
View hiteshus816's full-sized avatar
🫠
Open To Work
🫠
Open To Work

Block or report hiteshus816

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
hiteshus816/README.md

Hi, I'm Hitesh Chowdary Bandaru 👋

Cybersecurity Graduate Student | CompTIA Security+ | Aspiring Penetration Tester & Security Analyst

🎓 M.S. Cybersecurity & Information Assurance University of Central Missouri (Expected May 2026)


About Me

I am a cybersecurity graduate student focused on offensive security, Active Directory security, vulnerability assessment, and security operations.

I enjoy building hands-on labs, documenting attack techniques, and understanding how attackers operate so defenders can detect and stop them.

Currently preparing for a career as a:

  • Junior Penetration Tester
  • SOC Analyst
  • Security Analyst

Current Focus

  • Hack The Box CPTS Path
  • Active Directory Security
  • Windows Privilege Escalation
  • Python Security Automation
  • SIEM & Detection Engineering
  • Threat Detection & Incident Response

Technical Skills

Operating Systems

  • Windows
  • Linux (Ubuntu, Kali)

Networking

  • TCP/IP
  • DNS
  • DHCP
  • HTTP/HTTPS
  • SMB
  • LDAP
  • Kerberos

Offensive Security

  • Active Directory Enumeration
  • Privilege Escalation
  • Password Attacks
  • Network Enumeration
  • Vulnerability Assessment
  • Metasploit Exploitation
  • Buffer Overflow Fundamentals

Defensive Security

  • Security Monitoring
  • Incident Response
  • Windows Event Analysis
  • Network Traffic Analysis
  • Threat Hunting Fundamentals

Tools

  • Nmap
  • Metasploit
  • BloodHound
  • Hydra
  • Wireshark
  • Nessus
  • Burp Suite
  • Netcat
  • Evil-WinRM
  • PowerView
  • Bettercap
  • Recon-ng
  • Scapy

Programming

  • Python
  • PowerShell
  • Bash

Featured Projects

Active Directory Attack Lab

Simulated an enterprise Active Directory environment to perform enumeration, privilege escalation, lateral movement, and credential attacks.

Skills:

  • BloodHound
  • PowerView
  • Kerberos
  • Evil-WinRM

DNS Cache Poisoning Lab

Performed DNS spoofing using Bettercap to understand cache poisoning attacks and mitigation strategies.

Skills:

  • Bettercap
  • DNS
  • Packet Analysis
  • Network Security

Network Reconnaissance & Exploitation

Performed service discovery, vulnerability identification, and exploitation using industry-standard penetration testing methodology.

Tools:

  • Nmap
  • Metasploit
  • Netcat

Password Attack Lab

Performed password auditing and brute-force attacks against lab systems.

Tools:

  • Hydra
  • Hashcat
  • John the Ripper

Vulnerability Assessment

Conducted vulnerability assessments and analyzed security findings using Nessus.


Packet Analysis Lab

Captured and analyzed network traffic to identify protocols, malicious activity, and attack patterns using Wireshark.


Certifications

✅ CompTIA Security+


Currently Learning

  • HTB Certified Penetration Testing Specialist (CPTS) Path
  • Detection Engineering
  • Splunk
  • Microsoft Sentinel
  • Malware Analysis
  • Cloud Security Fundamentals

Connect With Me

LinkedIn: www.linkedin.com/in/hitesh-bandaru

Email: hiteshus816@gmail.com

GitHub: https://github.com/hiteshus816

Pinned Loading

  1. ARP-Cache-Poisoning-MITM-Attack-Lab ARP-Cache-Poisoning-MITM-Attack-Lab Public

    Demonstrated ARP cache poisoning attacks using ARP requests, ARP replies, and gratuitous ARP messages. Performed Man-in-the-Middle (MITM) attacks against Telnet and Netcat communications using Scap…

    Python

  2. DNS-Cache-Poisoning-Local-DNS-Spoofing-Attack-Lab DNS-Cache-Poisoning-Local-DNS-Spoofing-Attack-Lab Public

    Demonstrated DNS spoofing and DNS cache poisoning attacks in a controlled lab environment using Scapy and Python. Manipulated DNS responses, injected forged authority and additional records, poison…

    Python

  3. Firewall-Exploration-Lab-Stateless-Stateful-Firewalls-Load-Balancing Firewall-Exploration-Lab-Stateless-Stateful-Firewalls-Load-Balancing Public

    Implemented and tested Linux iptables firewall rules including stateless filtering, stateful packet inspection, connection tracking, rate limiting, and load balancing using NAT and packet distribut…

  4. Metasploit-SMB-Exploitation-Lab Metasploit-SMB-Exploitation-Lab Public

    Full attack simulation using Metasploit: SMB exploitation, post-exploitation, and reverse shell payload delivery

  5. powershell-post-exploitation-lab powershell-post-exploitation-lab Public

    Hands-on PowerShell post-exploitation lab demonstrating file discovery, credential hunting, ping sweep, and port scanning in a simulated environment.

  6. Hydra-Password-Cracking-Wordlist-Analysis-Lab Hydra-Password-Cracking-Wordlist-Analysis-Lab Public

    Hands-on lab demonstrating password list analysis and brute-force concepts using Hydra. Includes wordlist filtering, password policy checks, and service enumeration with real-world attack simulation.