Projects
Real Engagements.
Real Impact.
Real security engagements, SIEM deployments, and red team operations conducted in professional environments.
Enterprise SIEM Deployment
Designed and deployed Wazuh SIEM with custom detection rules, integrated Suricata IDS, and configured LimaCharlie EDR for endpoint visibility. Enabled real-time threat detection and automated alerting for SOC operations.
Web Application Security Assessment
Comprehensive web application penetration tests using Burp Suite and OWASP methodology. Identified critical vulnerabilities including SQLi, XSS, IDOR, and authentication bypasses. Delivered CVSS-rated reports with PoC screenshots.
Mobile Application Penetration Testing
Security assessments on Android and iOS applications. Analyzed APKs for hardcoded secrets, insecure data storage, and improper authentication using Frida for dynamic analysis and MobSF for static analysis.
Red Team Infrastructure (CRT-ID)
Built OPSEC-safe red team infrastructure including cloud and on-premise redirectors, phishing/initial access servers, scalable C2 infrastructure, and custom NGINX rules for adversary simulation. Validated during CRT-ID certification.
Infrastructure Vulnerability Assessment
Comprehensive vulnerability assessments across internal networks and systems using Nessus, Nmap, and custom scripts. Identified misconfigurations, unpatched systems, and exploitable paths with prioritized remediation roadmaps.
Digital Forensics & Incident Response
Memory and disk forensics using Autopsy and FTK Imager to analyze compromised systems. Traced attacker TTPs, identified malware artifacts, and produced detailed incident reports with timeline reconstruction.