Skip to content
View SagarBiswas-MultiHAT's full-sized avatar
🇧🇩
ʟᴏꜱᴛ ɪɴ ᴛʜᴇ ᴍᴀᴛʀɪx ᴡʜᴇʀᴇ 0 & 1 ᴛᴜʀɴs ᴛᴏ ɢᴏʟᴅ. ᴄᴏᴅᴇ ɪꜱ ᴡᴇᴀᴘᴏɴ, ᴄʜᴀᴏꜱ ɪꜱ ᴀʀᴛ.
🇧🇩
ʟᴏꜱᴛ ɪɴ ᴛʜᴇ ᴍᴀᴛʀɪx ᴡʜᴇʀᴇ 0 & 1 ᴛᴜʀɴs ᴛᴏ ɢᴏʟᴅ. ᴄᴏᴅᴇ ɪꜱ ᴡᴇᴀᴘᴏɴ, ᴄʜᴀᴏꜱ ɪꜱ ᴀʀᴛ.

Highlights

  • Pro

Block or report SagarBiswas-MultiHAT

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Sagar Biswas (SagarBiswas-MultiHAT)


Actions status   get-started workflow   License   Last commit   Top language


Cybersecurity Enthusiast (Web App Security) • Web Developer • CSE Student (AIUB)

Sagar Biswas is a Computer Science and Engineering (CSE) student at American International University–Bangladesh (AIUB), a cybersecurity enthusiast, ethical hacker (web application security), and web developer.

This is the official GitHub profile of Sagar Biswas, known online as SagarBiswas-MultiHAT, where he publishes open-source projects, cybersecurity tools, learning notebooks, and web development work.

Identity

  • Name: Sagar Biswas
  • Username: SagarBiswas-MultiHAT
  • Field: Web Developer, Cybersecurity (Ethical Hacking, Web App Security)
  • Role: BSc in Computer Science And Engineering (CSE) Student at American International University Bangladesh
  • Country: Bangladesh
  • e-Portfolio: https://sagarbiswas.multihat.dev/

Profile views   GitHub followers   GitHub stars

Facebook Group   Email   LinkedIn  

YouTube


I am a Coder | Web Developer | Web Penetration Tester


☯️ Live From Private Repos:

  1. PromptVault - Your private, offline-first library for AI prompts. Securely save, organize, and perfect your instructions using a built-in AI Librarian. Features PIN-protection, categories, fill-in-the-blank variables, and optional cloud sync. Own your workflow without subscriptions. 🚀🔒

    Link: https://promptvault.multihat.dev/

  2. PhishGuard is a fast-paced web game that trains your instincts against email phishing. Powered by a Dual-AI Consensus Engine (OpenRouter & Groq), it generates and verifies highly realistic, unique phishing scenarios in real-time. Can you spot the scam before the 10-second timer runs out?

    Link: https://phishguard.multihat.dev/

  3. sydneywheelsandtyres - A premium, high-performance static marketing website for Sydney Wheels & Tyres. Built with Next.js, TypeScript, and Tailwind v4, it features immersive UI animations, 3D tilt cards, automated sitemaps, and rich local business schema. Designed to maximize SEO discoverability, showcase auto services, and drive customer bookings in Campbellfield.

    Link: https://sydneywheelsandtyres.com.au/

  4. sagarbiswas-multihat.github.io - A privacy-first, static developer & cybersecurity portfolio for Sagar Biswas (MultiHAT). Fast, SEO-friendly GitHub Pages site showcasing projects, tutorials, and blog posts; includes RSS, sitemap, responsive design, and easy rebuild scripts��ideal for sharing work, demos, and technical write-ups.

    Link: https://sagarbiswas.multihat.dev/

  5. multihat.dev - This is my personal cyber-themed command deck showcasing AI systems, cybersecurity tools, and high-performance web apps. Built with Next.js 15 and Tailwind, it features a privacy-first architecture and robust SEO to highlight live projects like PromptVault and PhishGuard.

    Link: https://multihat.dev/


📢 Live From Public Repos:

  1. WiFi-QR-Generator - Generate Wi‑Fi QR codes instantly in your browser, no backend required. Supports WPA/WPA2, WEP, and open networks; hidden SSIDs; adjustable size and error correction; export PNG or SVG; copy raw Wi‑Fi payload; offline-friendly (local QR lib). Privacy-first: nothing leaves your device.

    Link: https://wifi.multihat.dev/qr

  2. Password-Strength-Checker - A polished, accessible client-side password strength checker that estimates entropy, detects weak patterns, and provides actionable suggestions. Includes a built-in password generator, works fully offline with no network calls, and uses ARIA live updates for accessibility. Ideal for demos, portfolios, or frontend components.

    Link: http://psc.multihat.dev/

  3. SharpLink-URL-Allies - A clean Flask-based URL shortener that converts long links into short, shareable URLs with optional custom aliases, expiration support, and TinyURL mirroring. Uses SQLite for persistence, includes copy helpers, rate limiting, and a simple REST API. Ideal for learning backend fundamentals and deployment.

    Link: https://sharplink.onrender.com/


👋 About Me

Hi! I’m Sagar Biswas, a passionate coder, web developer, and focused on web application security assessment and vulnerability analysis from Bangladesh. With a strong foundation in computer science, I’m on a mission to master the art of cybersecurity and make the web a safer place.

🌟 What I’m About

I’m deeply driven by curiosity and the thrill of solving problems. Whether it’s building secure web applications or uncovering vulnerabilities, I love learning, experimenting, and improving my skills every day.

💻 What I’m Working On

Currently, I’m focused on:

Enhancing my penetration testing skills with practical, hands-on experience.
Developing secure and efficient web applications.
Strengthening my knowledge of programming languages like Python, C++, Bash scripting, and more.

📫 Let’s Connect!

I’m always eager to connect with fellow developers, cybersecurity enthusiasts, and learners. Check out my repositories to see what I’m working on, or feel free to reach out. Let’s collaborate, share ideas, and grow together! 🚀

Skills: Python | C++ | C | C# | Java | ArduinoScripts | BashScripts | html | css | JSON | javascript | AJAX | PHP | React | NestJS | Web Security.

  • 🔭 I’m currently working on Exploring advanced penetration testing techniques and applying them to real-world scenarios.
  • 🌱 I’m currently learning CSE at American International University Bangladesh (AIUB).
  • 👯 I’m looking to collaborate on Open-source projects focused on cybersecurity and web security.
  • 🤔 I’m looking for help with Improving my penetration testing skills and learning advanced techniques.
  • 💬 Ask me about Programming Languages, Network Security, Linux Tools.
  • 📫 How to reach me: sagarbiswas@multihat.dev || 01727361077
  • 😄 Pronouns: He/Him
  • ⚡ Fun fact: My biggest weakness: when I am engaged with any work, I can't keep concerned with other work without finishing that.

Featured

Play the featured YouTube video


Connect with me

https://www.linkedin.com/in/sagarbiswas-multihat https://www.facebook.com/0sagarbiswas0 https://www.instagram.com/0_sagar_biswas_0/ https://www.youtube.com/@sagarscodecraft-mf7hq Codeforces

Labs & Learning

PortSwigger Web Security Academy   OWASP Top 10   TryHackMe   Hack The Box

Languages and Tools:

Python Bash Java C C++ C# MySQL HTML5 CSS3 JavaScript React Node.js TypeScript PHP Arduino PostgreSQL MongoDB Git Docker Linux


GitHub Analytics

Status Daily Streak
Weekly Streak Most Used Languages
GitHub Activity


Security / Responsible Disclosure

If you discover a security issue in any of my projects, please contact me directly at Facebook Group   OR sagarbiswas@multihat.dev with details. Do not post exploit details publicly until we discuss and agree on responsible disclosure and remediation.

Footer / Quick Links

- Certifications:
  1. Certified Phishing Prevention Specialist (CPPS)

Certified Phishing Prevention Specialist (CPPS)


  1. Certified Red Certificate

Certified Red Certificate


📂 My More Work

📔NoteBooks AND Facebook Community Group

Google_Dorks_Notebook Google_Dorks_Notebook

NOTE: To find more notebooks, projects, tips and tricks like this, join my Facebook community group and check the featured section for notebooks and explore the Posts to discover real-world projects.

Useful Repositories

Web_Penetration_Testing_Roadmap infosec-vocabulary Cybersecurity-Library WSL-Installation_Guide

🤖AI Based Projects

Web_Vulnerability_Scanner-AI Speech2Speech-AIAssistant PythonicHackathon-CLI Ai-Resume-Analyzer Ai-Phishy-Playground Chat-Automation-Bot_Ai-Assistant Cyber-Command_AI-Assistant.exe

🤖 Tools/Automation

MacChanger-V1-MAX Phoneint-OSINT-Toolkit WebSource-Harvester HashAttackDemos A_Pythonic-Keylogger BruteforceLab1 BruteforceLab2 EmailBomber NmapScanningTool-V1-MAX WinTempCleaner WiFi-Dictionary-Attack SeleniumFirefoxGoogleSearchAutomation TextBombing-Toolkit

🛜 Networking

TCP-Playground Saved-WiFi-Restore WiFi-Dictionary-Attack WiFi-QR-Generator domain2ip

🧑‍💻 Development

SharpLink-URL-Allies Photo-PDF-Bidirectional-Converter AirportDesk-Assistant Library-Management-System Multi-FA-Auth PyTextEditor SafeTodoManager SecurePay_E-Wallet-V1 Student-Management-MVC-Learning-Project TicTacToe-Game SecureBank-CLI SecureBankingSystem CustomerSlip-CLI PyCalculator Contact-Management-System SnakeWaterGun-Game PyAlarmClock AirportDesk-Assistant Fake_FACEBOOK_Login_Page

🤖 Small Projects

Password-Strength-Checker XSS-WebGuard Port_Scanner-Python RandomPasswordGeneratorCpp virusNewFolder

Collected Projects

Impress-Crush-CPP-ASCII

Pinned Loading

  1. A_Pythonic-Keylogger A_Pythonic-Keylogger Public

    Python-based keylogger for ethical use, capturing keystrokes and emailing logs. Features include retry logic for email delivery, log file management, and cross-platform support (Windows/Linux). Con…

    Python 19

  2. Web_Penetration_Testing_Roadmap Web_Penetration_Testing_Roadmap Public

    A curated collection of three cybersecurity learning roadmaps covering web penetration testing, ethical hacking, and foundational security skills. Each roadmap breaks learning into clear stages, to…

    Python 34 3

  3. Library-of-Cybersecurity-Books Library-of-Cybersecurity-Books Public

    A free, no-paywall cybersecurity self-study library covering foundations, pentesting, web security, exploit development, malware analysis, cryptography, defense, and programming. Books are organize…

    29 2

  4. WiFi-Dictionary-Attack WiFi-Dictionary-Attack Public

    WiFi Dictionary Attack is a compact, Python-based Wi‑Fi security testing script. It scans nearby networks, targets a specified SSID, loads a password wordlist from passwords.txt, attempts WPA/WPA2 …

    Python 24

  5. Web_Vulnerability_Scanner-AI Web_Vulnerability_Scanner-AI Public

    PoliteWebScanner is a learning-grade web vulnerability scanner plus AI-assisted report viewer. It crawls safely (queue-based, robots-aware, rate-limited), detects common issues (security headers, c…

    Python 22

  6. WebSource-Harvester WebSource-Harvester Public

    WebSource Harvester is an educational web-source harvester that crawls a site (BFS, depth-controlled), downloads browser-visible assets (HTML, CSS, JS, images, fonts, PDFs), and rewrites paths so p…

    Python 21 1