About Me

As a Senior majoring in Computer Science, I possess strong proficiency in programming languages like Python, R, SQL, Java, and C++. Seeking roles in cyber security, internet technology, data analysis, or web development, I bring a deep understanding of web security practices, including advanced techniques in HTTP attack mitigation, authentication security, and vulnerability assessment. I offer solid project management skills, leadership qualities, and a history of team collaboration. My expertise spans R and Python toolkits such as Pandas, Seaborn, Matplotlib, NumPy, scikit-learn, and Django, emphasizing my data analysis inclination. Currently working towards a Data Analysis certificate from Google. Additionally, I have practical knowledge in frontend development using HTML, CSS, and JavaScript. Besides technical skills, I am fluent in English, with a good grasp of French and basic Spanish.

Experience

  • Berkley Custom Insurance Managers, Stanford, CT
    • Technical Finance Intern, April 2024 - May 2024
    • Developed web portals and data interfaces using HTML, CSS, JavaScript, PHP, and Microsoft SQL Server.
    • Focused on integrating technology and automation in financial processes at Berkley Custom Insurance Managers.
    • Gained expertise in SQL and SSIS for data manipulation and efficient financial reporting.
    • Contributed to corporate dashboard compilations and automated accounting functions
content

Education

  • Rutgers, The State University of New Jersey - School Of Arts & Sciences
  • Major: Computer Science Bachelor Of Arts
  • Cumulative GPA: 3.3
  • Relevant Coursework:
    • Introduction to Data Science
    • Computer Architecture
    • Database and Information Management
    • Design and Algorithm
    • Data Structures
    • Programming Concepts
    • Internet Technology
    • Computer Programming II
    • Intro. to Mobile Application Development
content

Skills & Interests

  • Professional Skills:
    • Kali linux
    • Burp Suite
    • R
    • Python ( Pandas, Numpy, Seaborn, Matplotlib, Scikit-learn, Django)
    • SQL
    • Java
    • Jupyter Notebook
    • C++
    • HTML
    • CSS
    • Javascript
    • Excel

  • Languages:
    • English
    • French
    • Spanish
  • Interests:
    • Hacking
    • Soccer
    • Weight Lifting
    • Boxing
    • Photography
    • Hiking
    • Guitar
    • Football
    • Stock Trading
    • Chess
    • Technology


content

Leadership

  • Phi Kappa Tau, Rutgers University
    • Treasurer, Sep 2022 - Sep 2023
    • Managed a $40,000 budget.
    • Organized fraternity events.
  • Rutgers University Programming Association
    • Event Coordinator, Sep 2022 - Sep 2023
    • Led programming initiatives.
    • Applied advanced programming skills.
  • Data Science Club, Rutgers University
    • Member, Jan 2021 - Present
    • Enhanced projects using R.
    • Participated in meetings to further develop my skills in Python and R


Data Analytics Projects

Python

Expertise in Python for data analysis.

Learn More

R

Proficient in R for statistical analysis and data visualization.

Learn More

SQL

Developing skills in SQL for data management&analysis.

Learn More

Cyber Security

Semicolon Academy

ETH-101 Ethical Hacking Foundation

  • Penetration Testing: Expertise in conducting comprehensive penetration tests to identify and exploit system vulnerabilities.
  • Kali Linux Proficiency: Advanced skills in using Kali Linux, a key operating system for cybersecurity professionals, including mastery of Linux commands.
  • Network Security Techniques: In-depth knowledge of configuring and securing network adapters, and practical experience in network-based attacks including WEP, WPA/WPA2 hacking, and de-authentication attacks.
  • Web Application Penetration Testing: Skills in testing web applications for vulnerabilities such as Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), SQL Injection, and Insecure Direct Object References (IDOR).
  • Cryptography and Encryption: Understanding of encryption methods, hashing algorithms, and their application in securing data.
  • Practical Exploitation Skills: Proficiency in exploiting network protocols like ARP, conducting Man-In-The-Middle attacks, and utilizing tools like Nmap for network reconnaissance.
  • Denial of Service (DoS) Understanding: Knowledge of DoS and DDoS attacks and strategies to mitigate these threats.
  • Vulnerability Mitigation Strategies: Ability to implement security measures to protect against common vulnerabilities like XSS, CSRF, SQL Injection, and IDOR.
  • Bug Bounty Hunting Skills: Understanding of the bug bounty landscape, including strategies for finding, exploiting, and reporting vulnerabilities.

WETH-201 Web Security Professional

  • Advanced Web Architecture Understanding: Proficient knowledge of frontend, backend systems, DNS, and server-client communication, essential for web security analysis.
  • Burp Suite Mastery: Expertise in using Burp Suite for web application security testing, including advanced interception, mapping, and extension techniques.
  • Expertise in Authentication Security: Skilled in securing and exploiting cookie-based and token-based authentication systems, including JWT and MFA/2FA vulnerabilities.
  • Advanced XSS Attack Techniques: Proficient in identifying, exploiting, and preventing various XSS vulnerabilities, with a focus on DOM-based XSS and CSP bypass methods.
  • Path Traversal and File Inclusion Skills: Ability to detect and exploit path traversal, LFI, and RFI vulnerabilities, crucial for web application security.
  • Server-Side Request Forgery (SSRF) Expertise: Specialized skills in executing and mitigating SSRF attacks, including advanced bypass techniques.
  • XML External Entity (XXE) Injection Proficiency: Competence in exploiting XXE vulnerabilities, a critical skill for securing web applications.
  • Brute Force Attack Strategies: Mastery of brute force techniques and countermeasures, including the use of CAPTCHA bypass and IP rotation.
  • Vulnerability Assessment with CVE and Scanning Tools: Familiarity with CVE databases and proficiency in using key scanning tools like Nuclei, Nessus, Nikto, and Wfuzz for comprehensive vulnerability assessments.

WETH-301 Web Security Practitioner

  • Advanced HTTP Attack Techniques: Mastery in HTTP verb tampering, host header attacks, and mitigation strategies, crucial for web security.
  • Expertise in CRLF Injection and HTTP Request Smuggling: Proficient in conducting and mitigating CRLF injection and HTTP request smuggling attacks, critical for defending web applications.
  • GraphQL API Vulnerability Assessment: In-depth understanding of GraphQL and its vulnerabilities, including IDOR, information disclosure, and CSRF attacks, essential for API security.
  • Web Cache Deception and Poisoning Skills: Knowledge of web cache deception and poisoning techniques, vital for securing web content delivery networks.
  • Command Injection and Remote Code Execution (RCE) Expertise: Skilled in identifying and mitigating command injection and RCE vulnerabilities, key for server security.
  • Server-Side Template Injection (SSTI) Proficiency: Ability to exploit and defend against SSTI attacks, important for securing web template engines.
  • PostMessage Vulnerability Exploration: Expertise in exploiting and mitigating vulnerabilities related to JavaScript postMessage, crucial for modern web application security.
  • Advanced Web Authentication and Authorization Attacks: Deep knowledge of OAuth, OpenID Connect, and JWT vulnerabilities and mitigation techniques, essential for securing authentication mechanisms.
  • Code Review and Mobile App API Security: Proficiency in performing code reviews for vulnerability identification and understanding vulnerabilities in mobile app APIs, valuable for comprehensive security analysis.