Medium Post
AI Just Got Me a Blood in the 2026’s Biggest CTF. Are You Even Keeping Up?
Writeups, research, and practical security notes from my Medium.
Read More →
WHOAMI
I build security automation, offensive tooling, and practical cloud defense workflows.
I’ll graduate from University of Maryland, College Park in May 2026, completing my Master’s in Cybersecurity and a Graduate Certificate in Cloud Engineering.
I’m looking for full-time Security Engineering, IR/SOC, or AppSec roles, and I’m open to relocating.
My work focuses on building and automating security systems, especially around log analysis, threat modeling, incident triage, and AI-assisted security workflows.
I also write technical blogs, contribute to open-source security tools, and build projects that simulate real-world attacks and defensive response.
whoami
I'll be graduating from the University of Maryland, College Park in May 2026, currently finishing my Master’s in Cybersecurity along with a Graduate Certificate in Cloud Engineering.
I'm actively looking for a full-time role in Security Engineering, IR/SOC Analyst, or AppSec roles, and I am open to relocating.
I focus more on builing and automating security Systems. A large part of my work involves automation and AI/LLM-assisted security workflows, especially for log analysis, threat modeling, and incident triaging.
I do write a lot of Blogs, building and contributing to open-source security tools, experimenting new AI/LLM, and work on projects that simulate real-world attacks and defensive response.
Let's stay in touch :)
Featured Projects
SOAR EDR Emulation
Emulating adversary techniques and automating D&R with LimaCharlie, Tines and Slack
Learn More →Automated DevSecOps Pipeline
An automated vulnerability scanning pipeline with Cloud, AI and Security integration
Learn More →Obsidian Sync from Windows
PowerShell-based automation to sync your Obsidian vault with a private GitHub repo
Learn More →Featured Projects
SOAR EDR Emulation
Emulating adversary techniques and automating D&R with LimaCharlie, Tines and Slack
Automated DevSecOps pipeline: Secure CI/CD Deployment
An automated vulnerability scanning pipeline which involves Cloud, AI and Security Integration.
Obsidian sync from windows
PowerShell-based automation sets up your Obsidian vault to sync with a private GitHub repo
CVEs
CVE-2025-46203
Published
Unifiedtransform v2.0 suffers from Broken Access Control, allowing students/teachers to access
/students/edit/{id} and modify student records. Affects all v2.0 builds.
CVE-2025-46204
Published
Unifiedtransform v2.0 suffers from Broken Access Control, allowing students/teachers to access
/course/edit/{id} and modify course data. Affects all v2.0 builds.
CVEs
- Unifiedtransform v2.0 suffers from Broken Access Control, allowing
students/teachers to access
/students/edit/{id}and modify student records. Affects all v2.0 builds
- Unifiedtransform v2.0 suffers from Broken Access Control, allowing
students/teachers to access
/course/edit/{id}and modify course data. Affects all v2.0 builds
Certifications
GFACT
Feb 2026
BSCP
July 2025
SAA
April 2025
CDSA
March 2025
OSCP
July 2024
Google Cert
Sept 2023
eJPTv2
May 2023
CEH
Feb 2023
Certifications
GFACT
Feb 2026
BSCP
July 2025
SAA
April 2025
CDSA
March 2025
OSCP
July 2024
Google Cert
Sept 2023
eJPTv2
May 2023
CEH
Feb 2023
Publications
SQLI Attack: An Approach using ML and Hybrid Techniques
September 2023
📚 Publications
Original Research
- Enhancing OSINT Practices with Eye-Sint: A Multi-Module Intelligence Tool - October 2023
- SQLI Attack: An Approach using ML and Hybrid Techniques - September 2023
Latest from Medium
Medium Post
React2Shell — CVE-2025–55182: Practical Exploitation of the Vulnerability
Writeups, research, and practical security notes from my Medium.
Medium Post
React2Shell — CVE-2025–55182: Critical Vulnerability in React Server
Writeups, research, and practical security notes from my Medium.