"I like building software... then breaking it."
I started my journey in software development, where I made games and implemented algorithms in C++, built frontend pages using React-TypeScript, developed features for enterprise Python test automation frameworks, and automated various tests suites for large scale systems.
As a software developer at heart, I will always explore new ways to build better software, from designing prettier UIs to developing more robust backends.
That said, I have recently been exploring the field of cybersecurity, diving into computer networking and security research, with a focus on web and Android application security.
This journey into cybersecurity has sharpened my ability to think like a hacker. I’ve gained a thorough understanding of the attack chain, from reverse engineering applications and crafting malware, to delivering the malware by exploiting vulnerabilities and controlling the infected system with a Command and Control (C2) server.
As I continue to progress in my career, my goal is to blend software development and cybersecurity to contribute to building safer software environments, such as developing tools for enterprise security.
• Investigated an APT group's attack patterns on a Canadian telecom provider by recreating their exploits in a controlled environment against an enterprise EDR solution. This research focuses on profiling their TTPs and developing detection signatures to strengthen Canada's cyber infrastructure against future threats.
Skills: Atomic Red Team™, MITRE ATT&CK®, Elastic Security for SIEM, Elastic Agent, VirtualBox, Windows, Literature Review
Research Report • Developed pre-release anti-malware features and automated AWS tests for Agentless Vulnerability and Threat Detection (AVTD), an agentless security product within Vision One™ - Cloud Security that protects AWS, Azure, GCP resources through anti-malware, integrity monitoring, and vulnerability scans.
• Maintained automated tests for Sentry, an existing AWS agentless threat detection product within Cloud One™.
Skills: AWS, Python, Go, Cgo, C, C++, Groovy, Jenkins
Vision OneCloud Sentry• Researched cyber threats and developed a Telegram open-source threat intelligence (OSINT) tool capable of collecting 20M+ messages, users, and metadata records per day.
Skills: Python, Telethon, Argostranslate, Multiprocessing, Logging, SQLite3, Elastic Stack, Proxies, DigitalOcean, Software Architecture
Presentation Slides• Researched and developed specialized security intelligence tools to protect Canada's national security from foreign interference and terrorism.
Skills: Python, Burp Suite, Frida, apktool, jadx, SQLite3, Postgres, Docker, Android Studio, API Security, Dynamic Analysis
Counter-terrorismForeign Interference• Developed new distributed systems reliability and security testing capabilities for WaveSuite's in-house Python test automation framework.
• Automated test scenarios, saving an additional 150+ hours per release and enhancing quality across all WaveSuite optical network products.
Skills: Python, Jenkins, CentOS, RHEL, MariaDB, Keycloak, LDAP, Docker, Swagger, Agile, Distributed Systems
WaveSuite Products• Built major pre-release frontend features for a large-scale data reporting application used by intelligence analysts.
Skills: TypeScript, React, SASS, Docker, Cypress, E2E testing, Agile, Microservices, Wireframes, Software Architecture, Usability-testing
National Security• Developed intranet sites to provide employees with information and work tools, accelerating tax returns processing by 10%.
Skills: HTML, CSS, JavaScript ES6, Web Experience Toolkit (WET), Web Accessibility (WCAG), Internationalization
Assessment, Benefit, and Service BranchA light-weight solution to detect large crowds waiting in line for food in real time with 90% accuracy, and notifies users via Slack with the estimated wait time, on demand.
An enriched data mart to analyze job market trends from 2021 to 2023 in several countries through conceptual design, physical design and data staging, OLAP queries, BI dashboard creation, and data mining
A food ordering web application that allows users to place an online order from any food outlet on uOttawa's campus.
Detection of people in a video sequence using image processing techniques and convolutional neural networks, implemented in Python and OpenCV.
A client-server simulation where a destination IP and payload are encapsulated in an IPv4 packet, sent to a server via a TCP/IP socket for de-encapsulation, checksum validation, and display of payload and metadata.
NMAP port scanning and Netcat banner grabbing lab on a Kali Linux virtual machine. Hypervisor: Oracle Virtual Box, Linux Distribution: Kali Linux, Vulnerable Machine: Metasploitable.
Multi-threaded TA-student meeting simulation with a TA, one office chair, three waiting chairs, and N students. Addressed issues of deadlock and starvation using semaphores, mutex, and integer counters.
My lab notes and learning progress for the PortSwigger Web Security Academy's SQL Injection chapter.
My lab notes and learning progress for the PortSwigger Web Security Academy's Authentication Vulnerabilities chapter.
A React-Typescript website for AzoCyber, a fictional cybersecurity service company. This project focuses on the design and analysis of user-interfaces.
A React-based website for a martial arts business specializing in grappling arts (Judo, BJJ, Wrestling). Focuses on the user-centered design.
A multi-paradigm data clustering application that implements the MapReduce DBSCAN algorithm to cluster the GPS starting locations of 200,000 taxi trip records to identify the best waiting areas for a taxi company’s vehicles.
Dental Clinic Management System (DCMS) for a dental centre with clinics in major cities across Canada using PHP and PostgreSQL.
System that matches employers and CO-OP students based on the rank/match process using the Gale-Shapley algorithm. The same algorithm is used by the University of Ottawa and the University of Waterloo.
A clone of the "Pipboy" from Fallout 4 using Bootstrap and jQuery. One of my first web development projects.
A gym management application for Android devices that allows users to book classes at a fitness centre.
A CLI Maze Game in C++ featuring a UI, interactive navigation, object interaction within the maze, as well as a "hard" mode restricting maze visibility to a 3-block radius. Implemented a DFS maze-solving algorithm.
A showcase of mathematics, computer science, and computer engineering coursework that I have written in LaTex. Contains English and French documents.
Lorem ipsum dolor sit amet, consectetur adipisicing elit. Mollitia neque assumenda ipsam nihil, molestias magnam, recusandae quos quis inventore quisquam velit asperiores, vitae? Reprehenderit soluta, eos quod consequuntur itaque. Nam.
Lorem ipsum dolor sit amet, consectetur adipisicing elit. Mollitia neque assumenda ipsam nihil, molestias magnam, recusandae quos quis inventore quisquam velit asperiores, vitae? Reprehenderit soluta, eos quod consequuntur itaque. Nam.
Lorem ipsum dolor sit amet, consectetur adipisicing elit. Mollitia neque assumenda ipsam nihil, molestias magnam, recusandae quos quis inventore quisquam velit asperiores, vitae? Reprehenderit soluta, eos quod consequuntur itaque. Nam.
Lorem ipsum dolor sit amet, consectetur adipisicing elit. Mollitia neque assumenda ipsam nihil, molestias magnam, recusandae quos quis inventore quisquam velit asperiores, vitae? Reprehenderit soluta, eos quod consequuntur itaque. Nam.
Lorem ipsum dolor sit amet, consectetur adipisicing elit. Mollitia neque assumenda ipsam nihil, molestias magnam, recusandae quos quis inventore quisquam velit asperiores, vitae? Reprehenderit soluta, eos quod consequuntur itaque. Nam.
Lorem ipsum dolor sit amet, consectetur adipisicing elit. Mollitia neque assumenda ipsam nihil, molestias magnam, recusandae quos quis inventore quisquam velit asperiores, vitae? Reprehenderit soluta, eos quod consequuntur itaque. Nam.