MinAtt&ck is a web security assessment tool for penetration testing reconnaissance.
It features an intelligent crawler with fuzzing capabilities and an integrated AI clustering model that groups similar URLs for optimized testing efficiency.
The tool tests for SQL injection, XSS, CSRF, and security misconfigurations before generating comprehensive vulnerability reports with severity ratings and remediation guidance.

Cartography page

Report page

URL Component Parser API is a FastAPI-based security tool designed for comprehensive URL analysis and validation in penetration testing workflows.
It features intelligent URL decomposition with rate limiting protection and automated security validation including HTTPS verification and input sanitization.
The tool provides structured JSON responses, comprehensive test coverage, and integrated security auditing with pip-audit (SCA) and bandit (SAST) analysis, making it ideal for security assessment pipelines and vulnerability research automation.

Password Management

SSL Certificate (hand-signed)

Successfully identified and exploited multiple web vulnerabilities while demonstrating understanding of both offensive and defensive security practices.
The project involved 8 progressive challenges that required understanding of web application architecture, database interactions, client-side security, and server-side vulnerabilities. Demonstrated practical knowledge of defensive security by identifying how each vulnerability could be mitigated through proper input validation, output encoding, and secure coding practices.

UnicornBox Interface

Technical write-up

Solutions kept private per course policy. Technical write-up available upon request.

Designed and implemented a secure file-sharing system with comprehensive cryptographic protections and user access management. Built robust authentication mechanisms and hybrid encryption architecture to ensure data confidentiality, integrity, and controlled distribution while maintaining optimal performance for file operations.

InitUser() schema (extract)

LoadFile() schema (extract)

Solutions kept private per course policy. Technical write-up available upon request.

Developed comprehensive understanding of low-level memory vulnerabilities through hands-on exploitation of 6 progressively challenging binary programs. Successfully crafted custom exploits to bypass various security mechanisms while demonstrating deep knowledge of x86 assembly, stack layouts, and memory protection techniques.

Project illustration

Stack layout analysis for buffer overflow exploit

Solutions kept private per course policy. Technical write-up available upon request.

Comprehensive implementation of machine learning algorithms from fundamental perceptrons to advanced neural architectures. Built and trained models for diverse applications including regression, classification, language processing, and computer vision. Developed deep understanding of neural network design principles, optimization techniques, and modern architectures including CNNs, RNNs, and attention mechanisms.

MNIST digit classification with neural network visualization

Recurrent neural network for language identification

Solutions kept private per course policy. Technical write-up available upon request.

Comprehensive implementation of core AI algorithms and techniques through four progressive projects covering search, game theory, reinforcement learning, and probabilistic inference. Built intelligent agents capable of navigation, strategic gameplay, learning from experience, and reasoning under uncertainty. Developed deep understanding of AI fundamentals from basic pathfinding to advanced probabilistic models.

Search algorithm visualization in maze environment

Q-learning agent performance with feature approximation

Solutions kept private per course policy. Technical write-up available upon request.