About
Cybersecurity Enthusiast, Backend Developer, and Bug Bounty Hunter.I’m passionate about building secure, scalable backend systems and continuously exploring new cybersecurity practices. With a B.Tech degree in Computer Science, I have hands-on experience in backend development using technologies like Node.js, NestJS, and Prisma, as well as implementing multi-factor authentication (MFA) to enhance application security.I’m proficient with databases such as PostgreSQL, MongoDB, and MySQL, and skilled in modern API design and performance optimization. My tech stack also includes Express.js, Next.js, and cloud platforms like Amazon Azure.As a bug bounty hunter, I’m actively involved in identifying and reporting security vulnerabilities to make systems safer. I’m highly active on Twitter, sharing insights on cybersecurity, backend development, and my latest tech experiments. Let’s connect and build something secure together!
WriteUps
Skills
Check out my latest work
I've worked on a variety of projects, from simple websites to complex web applications. Here are a few of my favorites.
Social Media Microservice
A lightweight microservice built with Node.js and Express for social media platforms. It incorporates essential security and performance middleware including CORS for cross-origin handling, Helmet for securing HTTP headers, Morgan for logging, and Express Rate Limit to mitigate abuse. This project reflects a strong focus on backend structure, security, and clean API design.
Secure Cookie-Based Authentication API
A fully secure authentication backend built with NestJS, implementing HTTP-only cookie-based authentication. The project covers key security layers including CORS configuration, CSRF protection, rate limiting, input validation, and secure cookie flags. Built with modular architecture and DTO validation, this service follows best practices for production-grade backend security.
Secure File Upload API with NestJS
A robust backend service built using NestJS that enables secure file uploads along with full CRUD functionality. The API is protected with proper CORS setup, Helmet for HTTP headers, file type/size validation, and storage handling. Ideal for any system requiring secure and scalable file management.
Cybersecurity Recon & Automation Toolkit
A custom-built suite of tools designed to automate reconnaissance, vulnerability scanning, and reporting tasks. These scripts are crafted for bug bounty hunting and penetration testing, and include modules for subdomain enumeration, port scanning, and passive info gathering. Many of these tools have been used during real-world bug bounty programs and CTF-style challenges.
I like building secure systems
During my time in university, instead of attending hackathons, I focused on building real-world applications and security tools. I enjoy learning by breaking, building, and fixing things—a mindset that has helped me deeply understand how systems work, both from a development and cybersecurity perspective. This hands-on approach led me to participate in various bug bounty programs and solve vulnerable machines on platforms like TryHackMe and Hack The Box, sharpening my skills in ethical hacking and secure coding.
- C
Cybersecurity & Bug Bounty
GitHub / Bug Bounty Platforms
I’m a cybersecurity enthusiast and active bug bounty hunter. I participate in multiple programs, reporting real-world vulnerabilities through responsible disclosure. I've built tools for recon, vulnerability scanning, and automation. I regularly solve vulnerable machines on platforms like Hack The Box and TryHackMe, gaining hands-on experience with exploitation techniques, privilege escalation, secure coding, and system hardening. - B
Backend Development
GitHub
My backend stack includes Node.js, Express, NestJS, and Prisma. I’ve built scalable APIs, implemented authentication systems, enforced role-based access, and followed secure development best practices to keep systems robust and efficient. - D
Databases
GitHub
I’ve worked with PostgreSQL, MySQL, and MongoDB. I'm familiar with relational and NoSQL data modeling, writing optimized queries, indexing, transactions, and implementing data validation and security. - N
Networking & Systems
Self-Learning / Labs
My cybersecurity background has given me a solid grasp of networking concepts: TCP/IP, OSI layers, DNS, HTTP protocols, firewalls, and VPNs. I’ve worked extensively with Linux environments, explored system internals, and configured environments for testing and exploitation. - L
Languages & Tools
GitHub
I’ve developed 35+ repositories using JavaScript, TypeScript, Python, and Bash. I work with frameworks like React, Vue, NestJS, and Next.js. I enjoy building useful, secure tools by combining my frontend, backend, and security skills.
Get in Touch
Want to chat? Just shoot me a dm with a direct question on twitter and I'll respond whenever I can. I will ignore all soliciting.