Greetings!

I'm a current Masters in Information Security student at Carnegie Mellon University with ~4 years of industry experience in securing organizations from the ground up in all aspects of Security. I specialize in DevSecOps, Application Security, Secure Coding, and Performing Security Reviews of Systems and Architectures.

My other areas of expertise include AWS - Security | Architecture | DevOps | DevSecOps, Ruby on Rails - Programming | Security, Startup Security, Risk assessment and mitigation, Mitigating OWASP Top 10, SOC2 - GDPR - ISO Compliance, Incident response, Vulnerability Assessment and Penetration Testing (VAPT), Purple-teaming, Security Awareness Training, Network Security, Online Privacy/Anonymity, and OPSEC.

Projects of Interest -

1. WinDED - Exploit Development using Python for CVE-2023-38831 (WinRAR)
2. V.M.A²S - Fully Automated & Centralized Vulnerability Lifecycle Management Microservice
3. Private repo - eXploitHub - Custom written exploits for attacks such as bypassing Stack Canaries, NOP Sled, ROP Gadget, Ret-to-libc, ASLR, Padding Oracle, Certificate Auth, XSS, SQL Injection, K8s, Linux Least Privileges, One-time pads, ECB, PGP, Hash extension attacks, SSL, Protocol Analysis, Tor attacks, and Blockchain.

Organized, Detailed-oriented, and a Productive Engineer with a GTD mindset (Getting Things Done). Self-taught, Quick-learner, and Social.

Resume - Best_Security_Engineer ||| Blog - Most_Useful_Security_Blog

🔭 I’m currently working on AppSecEngineer course content over at AppSecEngineer.

Have a good one!