I've rooted Android systems, bypassed WAFs, escalated to root on insane-difficulty HackTheBox machines — and I'm still in my diploma year.
I am a Cybersecurity Professional building the skills to engineer secure, zero-trust architectures. I specialize in penetration testing, vulnerability assessment, and SIEM-based threat monitoring. I believe in learning by doing — not just reading about attacks, but executing them in labs, CTFs, and real enterprise environments where the pressure is real.
- 🛡️ Security Focus: Penetration Testing, Vulnerability Research, SIEM Threat Monitoring, and Open Source Intelligence (OSINT).
- ⚛️ Research & Interests: Deeply interested in Quantum Security, Post-Quantum Cryptography, and future-proofing data ecosystems.
- 🚀 Tooling Developer: Creator of TDE-Tool, an open-source data encryption utility published on PyPI for developers and security professionals.
- 🎯 Open To: Cybersecurity Engineering Roles, Vulnerability Research, and Blue Team Operations.
| Domain | Proficiency | Details |
|---|---|---|
| Offensive Security & Pentesting | Expert |
Bypassing WAFs, Buffer Overflow Payloads, SSRF, SQLi, XSS, CSRF, Docker Container Escapes. |
| Defensive Security & SIEM | Advanced |
Wazuh, Microsoft Sentinel, UFW/pfSense Firewall Architecture, CIS-CAT System Hardening. |
| Zero-Trust Models & Arch. | Advanced |
Active Directory Kerberoasting Defense, End-to-End Encryption, Post-Quantum Cryptography Concepts. |
🟣 TDE-Tool (Terminal Data Encryption)
| Metric | Details |
|---|---|
| Stack | Python, Cryptography |
| Scale/Difficulty | Open-Source Security Utility |
| Performance | Fast and lightweight terminal-based encryption |
| Security | Advanced encryption standards |
| Impact | Published on PyPI to provide secure data handling |
| Repository | View on GitHub | View on PyPI |
An open-source, Python-based terminal utility for robust data encryption. Published on PyPI (
pip install tde), this tool allows developers and security professionals to securely encrypt and decrypt sensitive information directly from the command line.
🟣 SIEM Home Lab
| Metric | Details |
|---|---|
| Stack | Wazuh, Kali Linux, ParrotOS, Virtual Machines |
| Scale/Difficulty | Comprehensive Network Threat Monitoring |
| Performance | Real-time log parsing and event correlation |
| Security | Advanced IDS/IPS rule configurations |
| Impact | Elevated detection capability for real-world attack vectors |
| Repository | View on GitHub |
An elaborate home laboratory setup dedicated to Security Information and Event Management (SIEM). Utilizes Wazuh to monitor attack simulations initiated from Kali Linux and ParrotOS, fine-tuning detection and response mechanisms.
🟣 Building A Firewall
| Metric | Details |
|---|---|
| Stack | pfSense, OpenVPN, NetFlow, VMs |
| Scale/Difficulty | Enterprise Network Architecture |
| Performance | 100% rule enforcement without packet degradation |
| Security | Granular ingress/egress filtering, VPN Tunnels |
| Impact | Hardened perimeter defense blueprint |
| Repository | View on GitHub |
Architected a robust network boundary using pfSense. This project involved deep configuration of firewall rules, deploying OpenVPN for secure remote access, and utilizing NetFlow for comprehensive traffic analysis.
🟣 CTF Style Lab
| Metric | Details |
|---|---|
| Stack | Docker Compose, DVMA, CTFd, Nginx, MySQL |
| Scale/Difficulty | Containerized Vulnerability Lab |
| Performance | Lightweight, isolated multi-service environment |
| Security | Intentional vulnerabilities strictly scoped for testing |
| Impact | Provided a safe sandbox for penetration testing practice |
| Repository | View on GitHub |
A fully containerized Capture The Flag (CTF) environment utilizing Docker Compose. It integrates Damn Vulnerable Web App (DVWA) and CTFd, creating a reproducible arena for practicing web exploitation and forensic challenges.
December 2025 - May 2026
- Led a system hardening project using CIS-CAT Assessor, achieving a 43% compliance increase by classifying vulnerabilities and implementing fixes against real-world threats (e.g., ransomware).
- Executed a full-cycle medium-difficulty penetration test on HackTheBox, utilizing Burp Suite and developing custom scripts for RCE and root privilege escalation.
- Independently competed in an official CTF, solving complex challenges across Web Exploitation, Cryptography, and Forensics.
- Solved an insane-difficulty HackTheBox machine by developing advanced custom exploits, including a WAF bypass for SSRF and a buffer overflow payload for root escalation.
- Secured a Docker environment by demonstrating a critical container escape vulnerability and enforcing hardening best practices (read-only filesystems, Least Privilege).
- Simulated and defended against an Active Directory Kerberoasting attack, applying blue team controls like AES encryption for verification.
Vulnerability ScanningExploit DevelopmentDocker SecurityActive DirectoryCompliance Assessment
February 2026 - March 2026
- Deployed and validated granular network security controls using UFW and Wireshark to confirm 100% rule enforcement.
- Manually exploited and documented critical web vulnerabilities (SQLi, XSS, CSRF) using OWASP ZAP and suggested mitigation steps.
- Reduced attack surface exposure by mapping all externally facing endpoints and validating input sanitization controls.
- Authored detailed vulnerability reports following the OWASP Top 10 framework, mapping each finding to business impact and fix priority.
Network SecurityOWASP Top 10Wireshark Traffic AnalysisVulnerability Reporting
July 2025 - August 2025
- Conducted multi-stage web application penetration tests, successfully exploiting SQL Injection and XSS against OWASP Top 10 vulnerabilities.
- Executed comprehensive reconnaissance on a corporate domain, utilizing OSINT to map the attack surface and identify critical subdomains.
- Leveraged specialized tools (e.g., sqlmap, Burp Suite) to exploit vulnerabilities and document the entire attack chain with detailed remediation steps.
Web App PentestingOSINT ReconnaissanceAttack Chain MappingBurp Suite
| Recognition | Details |
|---|---|
| Smart India Hackathon 2025 | Internal Round Cleared / Team Leader |
| HackTheBox & Official CTFs | Cracked Insane-difficulty machines, Developed custom Zero-day level WAF bypasses & buffer overflows |
| McKinsey Forward Program | Program Participant & Alumnus |
Learning: Post-Quantum Cryptography, Quantum Security Algorithms
Building: Open-Source Security Tools (TDE-Tool on PyPI)
Exploring: Active Directory Kerberoasting Defense, Web Exploitation
Open To: Cybersecurity Engineering Roles, Vulnerability Research, Blue Team
"In a digitally hostile world, zero-trust is not an option—it is the baseline."