projects.exe
SECURITY OPERATIONS
01
Web Application Security
2025
LIVE PROJECT
LOADLIFTER PENTEST
Black-box and grey-box penetration testing on a live CakePHP web application built for an external client. Identified and exploited multiple critical vulnerabilities with full root cause analysis and remediation documentation.
SQL injection and XSS vulnerabilities identified and exploited
Authentication bypass vectors documented and patched
CAPTCHA integration and password strength enforcement implemented
Structured security test cases covering regression and data integrity
02
Full Stack + Security
2024
CLIENT PROJECT
CLIENT WEB PLATFORM
Designed and secured a full-stack website for an external client, serving as the sole security owner from initial threat modelling through to secure deployment verification.
Full threat modelling and attack surface identification
OWASP Top 10 hardening — XSS, SQLi, authentication controls
Role-based access control and input validation implementation
End-to-end secure deployment verification
03
Network Security Research
2024–2025
ACADEMIC RESEARCH
PROTOCOL ANALYSIS
In-depth research into modern network security protocols, focusing on cryptographic mechanisms, secure communication channels, and email security infrastructure.
TLS handshake mechanics and certificate validation chain analysis
IPsec / IKEv2 key exchange and tunnel configuration
Email security stack — SPF, DKIM, DMARC implementation
MITM threat modelling and phishing attack pattern analysis