Home About Projects Certifications Contact
My Work

Featured Projects

Real-world cloud infrastructure, security implementations, and scalable web solutions for clients.

🏆

UDI Sports – Cloud Infrastructure

Designed and deployed a production-grade AWS cloud infrastructure for UDI Sports. Set up auto-scaling EC2 fleet, S3 media storage, Route53 DNS routing, CloudFront CDN, and RDS database with automated backups. Implemented IAM least-privilege policies, GuardDuty threat monitoring, and CloudTrail audit logs.

AWS EC2 S3 VPC Route53 CloudFront IAM GuardDuty RDS Nginx SSL/TLS
🌐 Live Demo ⌥ GitHub
🏫

Bits International School – Website

Built and deployed a fully responsive institutional website for Bits International School. Hosted on a hardened AWS EC2 Linux server with Nginx, enforced HTTPS with Let's Encrypt SSL, configured UFW firewall, set up PM2 for Node.js process management, and enabled Fail2Ban for brute-force protection.

AWS EC2 Nginx Node.js PM2 Let's Encrypt Fail2Ban UFW HTML/CSS/JS
🌐 Live Demo ⌥ GitHub
🔬

Personal Portfolio & Cloud Lab

Built this very portfolio as a live cloud lab. Deployed on AWS EC2 with a custom Nginx configuration, HTTPS via Let's Encrypt, automated renewal via Cron, server hardening using SSH key-pair authentication, UFW firewall rules, and Fail2Ban intrusion prevention. Also includes a personal CTF (Capture the Flag) lab setup on a private VPC.

AWS EC2 Nginx SSL/TLS UFW Fail2Ban VPC HTML/CSS/JS EmailJS
🌐 Live Demo ⌥ GitHub
🕵️

VAPT Assessment Reports

Conducted 50+ vulnerability assessment and penetration testing engagements for various clients. Identified critical vulnerabilities including SQL injection, XSS, IDOR, misconfigured AWS S3 buckets, and weak authentication. Produced professional security reports with CVSS scoring, PoC screenshots, and remediation roadmaps.

Burp Suite Nmap Metasploit Nikto OWASP Top 10 CVSS Wireshark
📄 Request Report ⌥ GitHub
🌐

AWS VPC Network Architecture

Designed a multi-tier VPC architecture with public and private subnets across multiple Availability Zones. Configured NAT Gateways, Internet Gateways, Security Groups, NACLs, and VPC Peering. Implemented Site-to-Site VPN connectivity and set up VPC Flow Logs for network traffic monitoring and anomaly detection.

AWS VPC NAT Gateway Security Groups NACLs VPC Peering Site-to-Site VPN Flow Logs
📐 Architecture ⌥ GitHub
⚙️

Server Hardening Automation Script

Developed a comprehensive Bash automation script for Linux server hardening. The script automatically configures SSH key-only authentication, disables root login, sets up UFW firewall rules, installs and configures Fail2Ban, enables automatic security updates, and generates a hardening audit report with compliance checks.

Bash Script UFW Fail2Ban SSH CIS Benchmark Linux Audit
💾 Download Script ⌥ GitHub

Have a project in mind? Let's secure it together.

🚀 Start a Project