- ๐ผ Product Security Engineer at Splunk
- ๐ Bachelor's in Computer Science and Engineering
- ๐ก๏ธ Skilled in penetration testing (web, mobile, network), threat modeling, SAST/DAST, and DevSecOps
- ๐ณ Lead OWASP-Nightingale v2.0 โ 300+ stars, web GUI, 200+ pentest tools
- ๐ Building tools for supply chain security, SBOM analysis, and security education
- ๐ฎ Active in Hack the Box, solving security challenges
- ๐ค Passionate about community collaboration and mentorship
- ๐ Penetration Testing (Web, Network, Mobile)
- ๐ก๏ธ Threat Modeling & Vulnerability Assessment
- ๐ Source Code Review (SAST)
- ๐ DevSecOps & CI/CD Integration
- ๐ณ Docker Security & Containerization
- ๐ฆ Supply Chain Security & SBOM Analysis
- ๐ค Automation (Shell & Python)
-
Nightingale v2.0 โ Docker for Pentesters:
- OWASP Incubator pentest framework with web GUI, 200+ tools, embedded VS Code, and AI-assisted analysis
- 300+ GitHub stars | OpenSSF Best Practices certified
- Tech: Docker, Python, Bash, JavaScript
-
- CycloneDX SBOM parser with interactive vulnerability dashboard, filtering, and export
- Tech: Node.js, Alpine.js, Tailwind CSS
-
Supply Chain Attack Simulator:
- 22 hands-on labs for understanding, practicing, and defending against supply chain attacks
- Tech: Python, Node.js, Shell
-
- Structured security interview guides, threat modeling, zero-to-hero, and source code review
- Tech: HTML, Markdown
-
- AI-assisted security threat modeling from uploaded ERD and supporting documents plus architecture diagrams
-
- CWE-based vulnerability reference and mitigation guide
- Tech: Markdown
-
Speaking Engagements:
- Blackhat Arsenal ASIA 2022, 2023, 2024
- Blackhat Arsenal EU London 2025
- OWASP Global AppSec EU 2022
- Docker Community Hands-On Event
- Blackhat Arsenal MEA 2022, 2023 (Shortlisted)
- c0c0n 2024
- IWCON 2024
-
Hack the Box:
- Solving challenges and learning from peers in the cybersecurity community
- My Blog: Sharing tutorials, insights, and research in cybersecurity.
- Portfolio: Interactive terminal-style portfolio.





