My development workflow is cyclical. I build high-performance, asynchronous backends using Django, Celery, and PostgreSQL, then I pivot to my Offensive Security workflow to stress-test every API endpoint, authentication flow, and data handling process.

I don't just develop; I perform security research on my own infrastructure to ensure it is hardened against modern attack vectors.

Building scalable, secure-by-default server-side systems.

• Core: Python, Django, DRF, Django Channels
• Async/Cache: Celery, Redis
• Database: PostgreSQL, JWT, Pytest (TDD)

Identifying and mitigating vulnerabilities before they reach production.

• API Security: Focus on OWASP API Top 10 (BOLA, BFLA, Injection flaws).
• Pentesting: Web application & API pentesting, identifying logic flaws.
• Tooling: Burp Suite, Nmap, custom automation scripts.

• Ops: Docker, Nginx, Gunicorn, Linux (Ubuntu/Kali).
• Networking: TCP/IP, network topology, and enterprise hardware deployment.

A production-ready multi-tenant SaaS platform with isolated workspaces, role-based access control, and a scalable backend architecture designed for teams.

A lightweight JSON file converter utility — supports format transformation, schema validation, and batch processing with a clean CLI interface.

A self-hostable mock API server with team workspaces, rule engine, OpenAPI import, and AI-powered response generation.

I build it. I break it. I secure it.