Cyber Security: Penetration Testing, Security Engineering, Machine Learning and Python Projects

Projects like Cryptography, Pentesting, CTFs, Ethical Hacking, Security Engineering and more.

Shoes

DPTSI Penetration Testing

Security Tested 20 Web Applications. Found hundreds of small-medium and several high-critical level vulnerabilities such as Database Leak (SQLi) and Gained Admin Access (Broken Access Control).

Cyber Security
Penetration Testing
Burpsuite
OWASP Zap
SQLMap
XSSer
Dirsearch
LFI
RFI
SQLi
Broken Access
Admin Access
Defacement
Judi Online
Project details →
Shoes

Statistical, Frequent Pattern Mining and Machine Learning based Web Honeypot Attack Data Analysis: SNARE and Tanner

Attack Data Analysis of Web Honeypot written in Python with VPS Setup and Attack Simulations + real attack data with VPS

Frequent Pattern Mining
Web Honeypot
Data Mining
Machine Learning
K-Means Cluster
Docker
Ubuntu VPS
Python
Project details →
Shoes

OS Security (SIEM): Wazuh

Here I'm using Wazuh as SIEM to detect and analyze what’s happening when Windows OS is infected with running malwares, also when a Web App is attacked.

Network Security
Security Engineering
SIEM
Wazuh
SQLi
Malware
Virus Total
Project details →
Shoes

Network & Web Attacks with Detection using Snort IDS Community and Custom Rules

Here, what I did is I use Snort as Intrusion Detection System (IDS) to detect any incoming attacks against certain websites, use community rules and create custom rules to detect intrusions. On top of that, I also do Proof of Concepts to see whether the rules work or not.

Network Security
Security Engineering
IDS/IPS
Snort
Nmap
Metasploit
DoS
Injections
LFI
XSS
RFI
SQLi
Session Hijack
SQLMap
Project details →
Shoes

SSH and Web Honeypots using Cowrie and SNARE + TANNER

In this project I’m setting up honeypots which is an SSH honeypot (cowrie) and a web honeypot (snare + tanner) where I analyze malicious activities from users from the internet. I setup the honeypots on AWS C2 Ubuntu instances.

Network Security
Security Engineering
Honeypot
Cowrie
SSH
SNARE & Tanner
Web Honeypot
VirusTotal
Malware Analysis
VPS
AWS EC2
SQLi
XSS
CSRF
LFI
RFI
Project details →
Shoes

Web Security Static Analysis using Semgrep and SonarQube

Here, I did Web Security static code analysis using Semgrep and SonarQube. The websites that I analyzed here are DVWA which is a vulnerable Fullstack Web App and Kos KaKa Dashboard Backend which is a backend API which is a Backend API for Kos KaKa web app.

Network Security
Security Engineering
IDS/IPS
Snort
Nmap
Metasploit
DoS
Injections
LFI
XSS
RFI
SQLi
Session Hijack
SQLMap
Project details →
Shoes

Web App Security Dynamic Analysis: OWASP ZAP-CLI

Here, I did Web Security dynamic analysis using ZAP-CLI. The website that I analyzed here is OWASP Juice Shop which is a vulnerable Fullstack Web App.

Network Security
Security Engineering
IDS/IPS
Snort
Nmap
Metasploit
DoS
Injections
LFI
XSS
RFI
SQLi
Session Hijack
SQLMap
Project details →
Shoes

Malware Analysis Projects

Here I showcase some malwares that I get from malicious whatsapp messages and the internet then analyze them using both Static and Dynamic Malware Analysis methods.

Network Security
Security Engineering
Static Malware Analysis
Hex Edit
PE Explorer
Wedding.apk
Dynamic Malware Analysis
VirusTotal
AnyRun
Project details →
Shoes

Custom Security Tools

Custom security tools mainly built using Python

Python
Network Programming
Security Scripts
SQLi Scanner
Port Scanner
Threads Port Scanner
Project details →