Evidence Monday

Explore Broken Authentication Mechanisms

Explore Broken Access Control Mechanisms.

OWASP Jucie Shop Sensitive Data Exposure

This project was done during my masters programme at the University of Trento, Italy. It entails detailed analysis of users experience using the PicsArt Application. It contains well structured GO Models, Sentiment analysis on feedback from users gotten from a survey, Traceability matrix comparing the features of System-as is and System-to be and Risk prioritization.

This repository contains the reports of some of the exercises and project done in my Security course. In this course we explored the OWASP top ten web application security vulnerabities in systems and wep applications. We exploited and added relevant patches where necessary. We used tools like OWASP Zap, explored web automation framweworks like selenium and static taint analysis on codes.

Security Engineer at TecAlliance

Feb 2 - Present

Deployed and managed Microsoft Sentinel with AWS, Microsoft XDR, Nessus, and custom integrations. Built MITRE ATT&CK–aligned detections and automated playbooks to enhance incident response. Led vulnerability management, patching automation, and phishing defense (including AI-driven vishing simulations). Strengthened AWS security visibility, and mentored engineers on secure coding and SOC practices.

R&D Cyber Security Tester @ Siemens

Jun 1 - Jan 31

Researched Linux and IoT firmware security, including FirmAE, PANDA, and FreeRTOS reverse engineering. Conducted penetration testing on embedded devices (MQTT vulnerability discovery) and supported secure design for engineers. Hands-on with Docker container testing and Siemens S7-1500 PLC firmware deployment.