Cyber Security Analyst with hands-on experience across cloud infrastructure hardening, penetration testing, and CTF challenge engineering. AWS Certified Solutions Architect – Professional. I combine an offensive security mindset with practical systems administration to build and break things that matter.
Co-engineered 38 CTF challenges across web, crypto, forensics, OSINT, and reverse engineering for a Macquarie University competition targeting 3 academic levels. Containerised all web challenges with Docker; wrote Python tooling to auto-generate JSON/Markdown inventories tracking challenge paths, categories, difficulty, and deployment status.
Black-box penetration test of a self-built LAMP web application. Identified and documented 11 vulnerabilities including critical RCE via file upload, authentication bypass via SQL injection, stored XSS, IDOR, session fixation, and directory listing. Produced a structured pentest report with CVSS-style severity ratings, reproduction steps, and remediation code for each finding.
Built a multi-class attack classifier in Python on 220,000 network traffic entries. Classified brute-force, SQL injection, XSS, and system command execution using Random Forest, XGBoost, and Logistic Regression. Engineered payload features by extracting attack-tool signatures (hydra → brute-force, sqlmap → SQLi). Best model achieved 89.6% accuracy with Brute Force F1 of 0.99.