RESEARCH MODE: INVESTIGATE • BUILD • SHARE

Security research & secure engineering —

I’m a security researcher and full-stack engineer focused on vulnerability research, secure-by-design systems, and automation. I build reliable services with FastAPI, Django, Next.js, React, and Node.js — then turn findings into clear writeups and tools.

I enjoy labs, responsible disclosure, and continuous learning. My work prioritizes measurable impact, clean documentation, and collaboration.

View Projects Security Toolkit

Status: open@collab • research

Core

Python • FastAPI • Django

Web Stack

Next.js • React • Node.js

Security

Ethical hacking • labs • tools

GitHub YouTube Medium Dev.to LinkedIn

Research Console

snapshot • research, builds, and tests

secure

Status

Online

Focus

Vuln Research

Ops

Threat Model

Stack

FastAPI / Next.js

Terminal Log

$ whoami
security-researcher

$ stack --primary
python, fastapi, django, linux
nextjs, react, nodejs

$ mission --today
research • verify • document

$ method --mode
research-first: ON

Last ping: now()

About

I’m a security researcher and engineer who lives in the terminal. I investigate vulnerabilities, build security tooling, and translate findings into practical fixes and documentation.

My core stack is FastAPI + Django on the backend, and Next.js + React + Node.js on the front. I use automation to reproduce, validate, and document issues quickly and clearly.

Linux-first workflow Responsible disclosure Evidence-driven reports

What I build

Secure APIs with FastAPI / Django
Full-stack security tooling
Automation for recon, validation, and reporting
Dashboards for risk and remediation

What I explore

Web app security & defensive hardening
Vulnerability research & exploit analysis
Recon / OSINT automation
Threat modeling and new tech

Quick Stats (edit these)

Projects

20+

Linux Hours

∞

Writeups

30+

Labs Done

100+

Skills

My stack is dev + security + ops — I build, test, automate, and improve.

research-driven • clear communicator

Dev / Full-Stack

APIs • web apps • dashboards • automation

ship fast

Python FastAPI Django JavaScript React Next.js Node.js PostgreSQL WordPress Prompting Problem Solving

Clean architecture • reusable components • performance mindset

Cyber / Ethical Hacking

recon • testing • tooling • safe learning labs

ethical

OWASP Burp Suite Threat Modeling Nmap Recon / OSINT Google Dorking Nuclei Metasploit Wireshark Firewall Basics Hardening Snort (IDS) Vulnerability Mgmt

Focused on legal/ethical testing + learning + building safer systems

Ops / Cloud / GRC

deployment • pipelines • identity • governance

cloud

Linux Git GitLab CI/CD Docker Monitoring Azure AWS IAM IAM Tools IAG Governance & GRC Security Controls Vuln Tracking

Identity • access • audit-ready thinking • risk-based mindset

terminal-driven performance focused research mindset learn → test → improve secure by design

Arsenal

Tools I use daily and the kind of tooling I build around — automation-first, terminal-friendly, and clean enough to ship.

tooling • ops-ready

Recon & Discovery

scan

Subdomains & asset discovery
Endpoint crawling & content discovery
Fingerprinting (stack / headers / behavior)
OSINT + Google dorking workflow

surface intel mapping

Web Testing (Ethical)

safe

Auth/session testing & flows
Security headers & policy review
Input validation / OWASP patterns
Traffic analysis (Burp / Wireshark)

hardening risk-aware

Automation & Engineering

fast

Multi-threaded scanners & scripts
CLI tooling (Linux-first workflow)
Report outputs (JSON / CSV / HTML)
Dashboards + APIs (FastAPI / Next.js)

repeatable audit-friendly

Projects

Real builds from my lab — templates, tools, and production sites (clean, fast, and security-minded).

View GitHub ↗

pwntrends-blog

SEO-ready

Next.js blogging template for security & developer write-ups. Write posts in Markdown (.md), SEO optimized, clean UI, and fast pages.

Next.js Markdown SEO

Repo ↗ content → publish

nextjs-documentation-template

portal

Next.js + Tailwind Support Portal / Knowledge Base template. Markdown docs, modern layout, and also works great for blogging.

Next.js Tailwind Docs/KB

Repo ↗ docs → ship

Ducky_chat

assistant

My personal assistant tool for command suggestions and quick automation. Easy to feed data, quick to extend, and built for speed.

CLI Automation Tooling

Repo ↗ shortcut brain

image-to-webp-format-flask-application

micro-saas

Simple micro SaaS app to convert images into WebP format. Lightweight, practical, and fast.

Flask WebP Fast

Repo ↗ optimize media

welfordsystems.com

live

Production website for a cybersecurity company. Built using React + Vite with a clean, modern UI and fast performance.

React Vite Cybersecurity

Visit ↗ fast UI

Content

Best videos/articles — clean, fast, and clickable.

YouTube Ops

Tool demos, labs, quick tips, and build logs.

Open channel ↗

Featured on PwnTrends

Latest guides + writeups — internally linked for stronger crawl paths.

PwnTrends Home ↗ Next.js Blogging Free Template (GitHub Repo) ↗ React2Shell (CVE-2025-55182) — RSC to Shell ↗ About PwnTrends & Creator ↗

Contact

Want to collaborate, hire, or just talk tools and security? Send a message.

Email LinkedIn GitHub

Tip: set a real email address in the code below (search: you@example.com).

Message Console