Research & Development

Detailed technical documentation of our open-source Python and PHP security tools.

1. Cyber-TIP Platform

Python/Flask MongoDB Linux Iptables

The Cyber-TIP (Threat Intelligence Platform) is a specialized SOC dashboard designed to bridge the gap between threat reconnaissance and active network defense. Developed during my internship at Infotact Solutions, it automates the scraping, scoring, and kernel-level enforcement of malicious indicators.

Key Features

Intel Ingestion

Scrapes high-fidelity threat data from AbuseIPDB, AlienVault OTX, and PhishTank into a centralized MongoDB database.

Kernel Enforcement

Automatically pushes high-risk indicators (Risk Score ≥ 90) directly to Linux iptables for immediate blocking.

Ares Integration

Includes a validation module optimized for 20-IP batch cycles to verify firewall integrity through simulated pentesting.

Live Visualization

A real-time dashboard blocklist that correlates active iptables rules with their original intelligence sources and URLs.

View GitHub Repository

2. CWS Shield Engine (Open Source Edge WAF/IDS)

PHP 8 MySQL Linux Runtime Hooking Cryptographic Recovery

A high-performance, ultra-lightweight Application-Layer Intrusion Detection System (IDS) and Web Application Firewall (WAF) designed to inspect, intercept, and neutralize malicious web traffic before core application initialization.

Key Features

Zero-Overhead Flat-File Bouncer

Mitigates high-frequency automated directory brute-forcing and denial surges by dropping connections using a localized high-speed plain-text cache in under 2 milliseconds, skipping resource-heavy database queries.

Multi-Vector Regex Engine

Maintains highly optimized signature filtering matrices to intercept injection parameters across major input vectors (GET, POST, Cookies) matching SQLi, XSS, Path Traversal, and Command Injection signatures.

Cryptographic Recovery Protocol

Engineered an un-bruteforcable, high-entropy administrative token bypass mechanism to safely clear localized blocklist restrictions via secure link parameters, eliminating the need to expose backend server credentials.

One-Click Automation Wizard

Built an install wizard utilizing internal magic constants to dynamically calculate absolute server environments, instantiate log databases, append runtime server hooks via .user.ini, and execute a secure self-destruct script sequence.

View GitHub Repository

3. Ares Pentest Suite v1.1

Python 3 Scapy Vulnerability Scanning

Ares Pentest Suite is an advanced, full-stack automated vulnerability assessment platform. Designed as a capstone project for the Blitz Academy Cyber Security Course, it combines network-level reconnaissance with deep application-layer auditing and professional reporting.

  • Network Reconnaissance: Utilizes stealth SYN scanning (via raw socket manipulation) to bypass basic logging, and maps identified service banners against the National Vulnerability Database (NVD).
  • Web Application Auditing: Features active fuzzing to probe input parameters for SQLi and XSS vulnerabilities, alongside high-speed directory enumeration for hidden paths (e.g., /.git, /.env).
  • Cryptographic Audit: Evaluates SSL/TLS handshake validity, certificate expiry, and cipher suite strength.
  • Professional Reporting Engine: Automatically maps all technical findings to six core security domains, providing an executive summary and transparent methodology record.
View GitHub Repository

4. Netscan Vulnerability Scanner

Python 3 Socket Programming Multithreading

Netscan is a custom-built network scanning tool designed to identify active hosts and open ports. It has evolved through four major iterations, moving from a simple CLI tool to a comprehensive security auditing suite.

Version Evolution

V 5.0 Basic Scanner

The initial release featuring raw socket connections to detect open ports on a target IP.

V 5.1 Multithreaded Engine

Introduced Python threading to scan multiple ports simultaneously, significantly reducing scan time.

V 5.3 Web Dashboard Integration

A major usability upgrade integrating a web-based interface (GUI).

V 10.0 Security Suite (Final)

Includes advanced banner grabbing, **automated remediation advice**, and a **Brute-Force module**.

View Repository

5. Stealth Scan Pro

Scapy Kali Linux Firewall Evasion

A research-focused scanner designed to map networks without triggering IDS/IPS alerts using "Half-Open" (SYN) scans.

Version Evolution

V 6.0 CLI Scanner

The core engine built on Scapy operating entirely via CLI for scriptable scans.

V 6.1 GUI Interface

Enhances the core engine with a user-friendly Graphical User Interface (GUI).

V 7.0 Kali Linux & Desktop Tool

A fully integrated desktop application optimized for Kali Linux environments.

View Repository

6. MITM Intruder Proxy

Interception HTTP/HTTPS Packet Manipulation

A Python-based Man-in-the-Middle proxy tool inspired by Burp Suite.

Cluster Bomb Intruder

Automated payload injection testing (Fuzzing).

Repeater & Renderer

Capture requests, modify parameters manually, and preview HTML responses.

View Repository

Available for Freelance Projects

I am actively taking on freelance projects, security audits, and tool development collaborations. Connect with me on your preferred platform:

Upwork Fiverr Freelancer