Highlighted Projects

Red Teaming an LLM Application | AI Security, Red Teaming, Prompt Injections

• In this guided project from DeepLearning.AI and Giskard, I learned about LLM vulnerabilities, how to expoit them and conducted a full red team assessment of a chatbot application. (More details)

Neural Network for Malicious Url Predicting | Python, TensorFlow, Deep Learning, Data Engineering

• Coded and trained a deep neural network from scratch using TensorFlow, to predict the maliciousness of URLs, achieving 92% accuracy, 83% precision, and 82% recall. I’m currently working on improving those results by fine-tuning the model and deploying it in the cloud. (More details)

Incident Response in Simulated SOC | Incident response, Threat analysis and mitigation, Digital Forensics

• Responded to a simulated DDoS attack that exploited a zero-day vulnerability of the Spring framework (Spring4Shell) by communicating with stakeholders, analyzing network logs for attack patterns, mitigating by coding a firewall rule and performing a ‘postmortem’ by documenting and reflecting on the incident. (More details)

---

All Practical Projects

Incident Response

• Incident Handler’s Journal (More details)
• Incident response in simulated SOC (More details)
• Phishing Response Playbook (More details)
• Malware Response Playbook (More details)

Network & System Monitoring

• Suspicious Network Traffic Analysis (More details)
• Using Splunk SIEM for monitoring (Page under construction)
• Applying Filters to SQL queries to investigate unathorized access (More details)
• Wireshark log analysis (More details)
• tcpdump log analysis (More details)
• Windows Malware Scanner (More details)

Security Automation (Mostly using Python)

• Fraud Transaction Analyzer and Visualizer (More details)
• Windows Malware Scanner (More details)
• Encryption with Python (More details)

ML/AI for Cybersecurity

• Machine Learning Algorithm to Predict Spam (More details)
• Neural Network for Malicious Url Predicting (More details)

Vulnerability Assessment & Management

• Vulnerability Management with OpenVAS (Page under construction)
• Vulnerability Assessment for a fictional e-commerce (More detail)
• Nmap-Python Port Scanner (Page under construction) (Source code)
• Digital Dumpster Diving Executable Malware (More details)
• Executable Malware to Assess Credential Storage Resilience (More details)

Security Configuration & Hardening

• Securing AWS application with IAM policy configuration (Page under construction)
• Set up and Harden a Django Web Server with 2FA (More details)
• Python-based Secure Password Generator (Page under construction) (Source code)
• Managing Linux File Permission (More details)
• Improving Access Controls for a fictional business (More details)
• Role Based Access Control Python Algorithm (More details)
• File Permission Update Python Algorithm (More details)

Governance, Risk & Compliance (GRC)

• Security Improvement Plan applying the NIST CSF (More details)
• Applying the PASTA Framework (More details)
• Security Risk Assessment Report (More details)
• Risk Matrix (More details)
• Internal Security Audit for a Fictional Toy Company (More details)
• Home Office Asset Inventory (More details)

Security Awareness & Training

• Phishing Awareness Campaign (Page under construction)
• Parking lot USB Baiting Exercise (Page under construction)

Data Loss Prevention (DLP)

• Data Leak Investigation (More details)

Text-based RPGs using Python

• Dungeon of Dread (More details)

Other Projects

• Twitter (now X) analytics key performance metrics parser (More details)