Security Analyst &
Forensics Developer
M.Sc. student at NFSU with hands-on experience building security tooling, deploying SIEM infrastructure, conducting digital forensics, and shipping full-stack web applications.
- ▸SIEM Deployment & Monitoring
- ▸Digital Forensics & Investigation
- ▸Security Tool Development
- ▸Full Stack Web Development
- ▸Penetration Testing
Deployed Wazuh SIEM on AWS EC2 via a Docker agent stack, onboarding an Azure VM as a cross-cloud monitored endpoint. Authored custom Snort detection rules for ICMP flood, SYN scan, and Nmap recon with threshold filters to reduce false positives. Full analyst workflow: alert triage → log correlation → root-cause analysis → remediation documentation.
End-to-end forensics tool detecting timestamp manipulation on NTFS volumes by cross-correlating $MFT, $UsnJrnl, and $LogFile artifacts. Implements anomaly scoring and severity classification, exposed through a full-stack React + FastAPI dashboard for investigator workflow and forensic data export.
Cryptographic audit-log backend detecting unauthorized log modifications via SHA-256 hash chains — each entry is linked to the previous, making tampering mathematically detectable. Supports multi-category logs (auth / sys / app), NTP-synchronized timestamps, and automatic rotation. Applicable to SOC 2, PCI-DSS, and HIPAA compliance.
Bare-metal ESP32 firmware for passive 802.11 promiscuous capture and WPA2 4-way EAPoL handshake dissection across all 13 channels. Features an interactive UART shell, AP scanner, deauthentication injection, and text2pcap output for Wireshark and aircrack-ng — purpose-built for wireless threat-hunting and rogue-AP detection.
Full-stack platform for CURAJ students and faculty to report, browse, and reclaim lost items on campus. Node.js / Express REST API backend with MongoDB, a React frontend, and production deployment on Vercel.
Production full-stack blog and portfolio platform with markdown rendering, code syntax highlighting, SEO optimisation, and Supabase (PostgreSQL) backend for content management and auth. Hosts technical writeups on SIEM deployment, digital forensics, and security tool development.
- ▸Delivered a production-grade React.js web application for an external client as part of a 4-member agile team, working fully remote.
- ▸Translated client requirements into responsive UI components with iterative delivery — handling design, development, and testing phases end-to-end.
- ▸Improved page-load performance through code-splitting and component-level optimisation under real-world startup delivery pressure.