Skip to content
View cai0duque's full-sized avatar
17 followers · 14 following

Achievements

Achievement: Pull Sharkx2Achievement: Quickdraw

Achievements

Achievement: Pull Sharkx2Achievement: Quickdraw

Highlights

Block or report cai0duque

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 250 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
cai0duque/README.md

blackhole Typing SVG

I'm Duque — CS & Cybersecurity student, full-stack developer, and open-source security contributor.
I build with Python & TypeScript (Node, Next, Nest) and help secure projects by reviewing & re-validating vulnerabilities in the GitHub ecosystem.

Highlights

  • 🔐 Application Security first: OWASP Top 10 mindset, secure defaults, threat-modeling, SAST/DAST, and Code Review with security focus.
  • 🧪 Vuln research & re-validation: contributor in GitHub Security Advisories (triage/reviews), writing minimal PoCs and CVSS reasoning where appropriate.
  • 🧰 Productivity & DX: clean architecture, CI/CD, testing culture, typed APIs, and DevEx improvements that scale.
  • 🌌 Astronomy nerd who almost became an astrophysicist (that curiosity fuels my engineering).

Tech Stack

Languages Web & Frameworks Platform & Data
Python TypeScript Java JavaScript SQL HTML CSS SCSS Next.js React Node.js NestJS Express FastAPI PostgreSQL Prisma ORM Docker GitHub Actions Vercel

Security Toolbelt

OWASP Top 10, CodeQL, Semgrep, Burp Suite, ZAP, Nmap, Metasploit, Kali Linux, Linux hardening, JWT/OAuth2, CSP/Headers, SSRF/RCE/XSS prevention.

Pinned Loading

  1. How-to-get-credit-for-security-advisory-on-GitHub How-to-get-credit-for-security-advisory-on-GitHub Public

    This is a complete roadmap for those who have NEVER heard of the Github Advisories program. Here, you'll learn how to actively contribute to the community, especially in the security niche.

  2. Circuitos-logicos Circuitos-logicos Public

    Neste repositório você encontra exemplos práticos do funcionamento de diversos circuitos lógicos em JAVA. Futuramente, uma tela GUI será feita.

    Java

  3. Projeto-de-Controle-de-Estoque-Java Projeto-de-Controle-de-Estoque-Java Public

    Neste repositório existirá um grande projeto de um sistema de controle de estoque.

    Java 1

  4. Discord-Bot-IA Discord-Bot-IA Public

    Bot de Discord com integração à IA.

    JavaScript

  5. Mini-ERP-Livraria Mini-ERP-Livraria Public

    Base sólida do projeto de Mini-ERP de uma Livraria.

    TypeScript 2

  6. mvc-atvd mvc-atvd Public

    Atividade MVC

    JavaScript