Skip to content
View DipesThapa's full-sized avatar
🎯
Focusing
🎯
Focusing
  • Cyber Heroez CIC
  • United Kingdom
  • 07:26 (UTC +01:00)

Block or report DipesThapa

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
DipesThapa/README.md

Dipesh Thapa

Cybersecurity analyst (MSc Cybersecurity, University of Wolverhampton) building practical, security-first software and tooling — from cloud compliance scanners to production retail systems.

Followers Stars


What I do

I work where security meets shipping software: hardening applications and cloud, turning offensive-security findings into fixes, and building tools that make good security the default rather than an afterthought.

  • Application & cloud security — secure-by-default architecture, threat modelling, hardening
  • Offensive security — penetration testing and OWASP-driven assessment
  • Detection & response — logging, monitoring, and incident readiness (SOC-minded)
  • Engineering — reliable systems with CI/CD, guardrails, and clear operational docs

Selected projects

Project Summary Stack
OroQ (private) Privacy-first family-safety suite — on-device web filtering (browser extension + Android app) with end-to-end-encrypted parent reporting. By CyberHeroez CIC. TypeScript · Android · Cloudflare Workers
Bardibas RetailOS (private) Multi-tenant POS + Inventory + Accounting + Payroll for Nepal retailers — VAT/IRD compliant, offline-first. React · Vite · Supabase · Firebase
ClinicOS Clinic, pharmacy, and medical-operations platform adapted from a retail operations codebase. React · TypeScript · Supabase
CloudGuard Compliance-as-Code scanner that flags cloud misconfigurations (AWS S3 public buckets, risky IAM / security groups). CLI with HTML reports and Docker support. Python · Docker
CommunityShield URL-safety service: a browser extension + FastAPI backend that classifies links as safe / caution / danger. Python · TypeScript
PortScanner Nmap wrapper that exposes advanced scan features as clean, actionable output. Python
AdBlock Ultra Manifest V3 browser extension blocking ads/trackers via dynamic network rules, cosmetic filtering, and heuristics. JavaScript

Toolbox

  • Offensive: Nmap, Burp Suite, OWASP ZAP, Nessus, Metasploit
  • Defensive / monitoring: Splunk, Security Onion, pfSense
  • Engineering: Python, Bash, TypeScript/JavaScript, FastAPI, React, GitHub Actions
  • Platforms & cloud: AWS, Docker, Supabase, Kali Linux, Ubuntu, Windows Server
GitHub stats

GitHub Stats Top Languages

Get in touch

Popular repositories Loading

  1. cloudguard cloudguard Public

    CloudGuard — compliance-as-code cloud scanner for AWS. Flags risky IAM, S3, and security group configs. CLI tool with HTML reports and Docker support.

    Python 1

  2. oroq oroq Public

    OroQ — See Risk. Act With Confidence. A privacy-first web-safety suite for families, schools, and workplaces. All filtering and decisioning happens on-device; activity a parent sees is end-to-end e…

    JavaScript 1

  3. PortScanner PortScanner Public

    Uses the Nmap Advance Features

    Python

  4. DipesThapa DipesThapa Public

  5. AD_Blocker AD_Blocker Public

    JavaScript

  6. CommunityShield CommunityShield Public

    Python