Built custom security tooling for vulnerability discovery — including scanners, fuzzers, and automation scripts used across real-world engagements.

Developed client-side exploits covering XSS, CSRF, and related attack vectors, with a focus on understanding how browsers can be weaponized against users.

Built web applications in PHP and tested multiple PHP applications — uncovering critical vulnerabilities including RCE, SQLi, and logic flaws in real-world PHP-based targets.

Audited smart contracts on Ethereum and EVM-compatible chains, identifying vulnerabilities such as reentrancy, access control issues, and logic flaws before deployment.

Developed mobile applications and tested both mobile and web Java-based targets on real-world engagements, uncovering a range of vulnerabilities.

Tested multiple .NET applications in real-world engagements, consistently uncovering critical vulnerabilities.

Built applications with Django and assessed Django-based targets, identifying misconfigurations, broken access controls, and logic flaws in real-world engagements.

Developed websites with WordPress and tested real-world WordPress targets, uncovering a range of vulnerabilities including plugin flaws, misconfigurations, and authorization issues.

Built web applications using React and tested React-based frontends for client-side vulnerabilities including XSS, client-side path traversal and others.

Developed backend services with Node.js and tested real-world targets.

Used for personal projects and tested on real-world engagements, identifying misconfigurations and security vulnerabilities.

Used Nginx in development as a web server and reverse proxy, and assessed it on live targets — uncovering misconfigurations, path traversal issues, and insecure proxy setups.

A cloud-based platform for version control and code collaboration, used by millions of developers to host and manage repositories.

Amazon's cloud computing platform offering a vast range of infrastructure and services including hosting, storage, and computing power.

A leading cloud-based CRM platform used by businesses to manage customer relationships, sales pipelines, and marketing.

A web hosting provider offering affordable domain, hosting, and website building services to individuals and businesses worldwide.

A customer service and support platform that helps businesses manage customer interactions across multiple channels.

A leading music and podcast streaming platform with hundreds of millions of users across the globe.

One of the largest American telecommunications companies, providing phone, internet, and media services to consumers and businesses.