An outline of projects I have worked on.
Python, Flask, MongoDb
- Developed the backend for Avionics Dash using Flask REST Api's
- Deployed the application on https://app.koyeb.com for client access
- Functionality involved authentication, modules/assignments to be served to client
Code Review
- Performed Secure Code Review on Open-Source Project Sonarr
- Wrote a report on the Common Weakness Enumeration's (CWE's) found during the review
- The Report outlines all the tools used in complement with the manual code review process
.NET Framework 4.7
- Worked on attacking and defending the Webgoat.NET application
- Reported Common Weakness Enumeration (CWE) for all exploits performed as an attacker
- Secured the application for respective CWE's with best practices as a developer
MySQL, Ubuntu 14.04, Windows 7 SP 1, Windows Server 2016, Wordpress Website
- Performed penetration testing on various applications and operating systems
- Exploitation techniques involved, but not limited to, Cross-Site Scripting (XSS), SQL Injection, MS17_010 Eternal Blue, Cowroot, Privilege Escalation, Buffer Overflow, etc.
- Used Open Source Intelligence (OSINT) for reconnaissance and identifying attack vectors
- Few of the tools involved in the process are NMap, Searchsploit, Metasploit, Hashcat, Burp Suite, etc.
ASP.NET Core, Microsoft Security Libraries, MongoDb
- A portal for managing employees with primary focus on security details
- Areas covered in the project are Input Validation, Cryptography, Authentication & Authorization, Session Management, Error Handling, Logging and Debug
HTML, CSS, Bootstrap, Javascript
- At hackathon named Game-Jam organized by Poshmark, we as a team created a Try Not to Laugh Challenge where the player will be presented with funny videos and will be tempted to laugh
- Created a webpage which renders a video section and a user camera section.
- A miniature machine learning library is used for identifying the player's smile and scoring them accordingly
C#
- Different analyzers for static code analysis in C#
Dialogflow, Crickinfo API, Slack Integration
- A chatbot which uses dialogflow and crickinfo API to respond to questions asked around cricket
- The chatbot was integrated with slack so that it is easier to ask questions
- Part of hackathon with a team of 6 people
Python
- Minor project on analysis and implementation of blowfish cipher for password encryption
- A terminal based program that accepts a password as input and saves it as a cipher text in a file
Python
- RSA Algorithm for message encryption using block cipher
- Accepts a plain text message via terminal or file as input and outputs an encrypted message
My contributions to the Open Source Community:
- oauth-ruby - A Ruby library which implements OAuth 1.0
- TemPy - Fast Object-Oriented HTML templating With Python
- C-Guide-for-Beginners - A guide for beginners in C language
- black - Black is the uncompromising Python code formatter.
- aioresponses - Aioresponses is a helper to mock/fake web requests in python aiohttp package.
- pylint-pydantic - A Pylint plugin to help Pylint understand the Pydantic
- flake8-type-checking - Lets you know which imports to move in or out of type-checking blocks.