Building secure systems and defending digital frontiers —
cloud security, post-quantum cryptography, and threat detection.
Cybersecurity student and researcher specializing in cloud security, post-quantum cryptography, and offensive/defensive operations.
With hands-on experience across Microsoft Azure, AWS, and Linux environments, I design and deploy security architectures that address real-world threats — from SOC simulation labs to quantum-resistant cryptographic systems. My work spans the full spectrum: SIEM engineering, red team methodologies, cryptographic research, and secure system design.
SOC Detection Lab
Deployed a cloud-based SOC simulation environment using Windows/Linux VMs in Azure. Built custom KQL queries, analytics rules, and MITRE ATT&CK-aligned dashboards to detect brute-force and unauthorized access in real-time.
Zero-Trust Architecture
Engineered a Zero-Trust security architecture in AWS using IAM, VPC segmentation, RBAC, and KMS encryption. Designed isolated network zones and enforced least-privilege access to reduce attack surfaces.
Post-Quantum Cryptography for IoMT
Implemented NIST-aligned PQC algorithms (ML-KEM-512) for resource-constrained IoMT devices. Three-tier secure architecture with AES-256-GCM encryption, HKDF key derivation, and replay attack protection.
Proxy-Based Traffic Analysis
Used Burp Suite, OWASP ZAP, and Fiddler to intercept and manipulate HTTP/HTTPS traffic. Analyzed authentication flaws, session hijacking, cookie security, hostname validation, and request tampering vectors.
WebGoat Security Lab
Operated a WebGoat environment to exploit real OWASP Top 10 vulnerabilities: SQL injection, XSS, broken auth, IDOR, and insecure configs. Documented attack paths, remediation strategies, and secure coding practices.
Encryption & Cryptanalysis System
Built a C-based cryptography application with monoalphabetic substitution and Caesar cipher encryption. Automated cryptanalysis via frequency analysis, bigram/trigram detection, and Levenshtein-distance word validation.
Incident Response & Disaster Recovery Plan
Authored a full IRP/DRP for a simulated multinational financial institution addressing ransomware and insider threats. Covered regulatory compliance (GDPR, PCI DSS), crisis communication workflows, and enterprise continuity under breach conditions.
Steganography & Hidden Channels
Designed a covert communication system embedding encrypted payloads into carrier files via steganography. Implemented detection-resistant encoding workflows and analyzed traffic analysis countermeasures for hidden channel communication.