Skip to content

Case Studies

Dive into my diverse range of projects, showcasing my expertise in software development, design, and dedication to delivering exceptional results.

All Projects Privilege Escalation AI Security LLM Pentesting Prompt Injection
AI image prompt — Ultra-realistic, eye-level photograph of a bright, airy modern cloud-operations command center during the day. A sleek glass wall displays an elegant AWS multi-account architecture map and IAM access graph with glowing cyan (#00e5ff) accent lines. Bright natural daylight floods through floor-to-ceiling windows, two diverse cloud engineers in smart-casual attire collaborate at a clean white standing desk, potted greenery, shot on Hasselblad, high-end professional commercial branding, no dark cyberpunk tones
Project 01

Cloud Security Review

A comprehensive cloud security architecture review of a high-growth, AWS-native SaaS analytics platform (Stratuscale Analytics). The engagement uncovered and remediated a multi-account IAM privilege escalation path via overly permissive assumed roles, a public S3 bucket exposing Terraform state files containing hardcoded secrets, and internet-facing EC2 jump boxes — re-architecting the estate around least privilege, AWS Secrets Manager, strict Security Group rules, and continuous CIS AWS Foundations Benchmark alignment.

Explore Case Study
AI image prompt — Ultra-realistic, eye-level photograph of a bright, minimalist modern network operations center during the day. On a sleek glass desk, a premium widescreen monitor displays an elegant network topology map and asset risk matrix with glowing warm amber (#f59e0b) accent lines. Bright natural daylight pouring from large office windows, modern ergonomic chairs, neatly racked switches faintly visible behind glass, shot on Hasselblad, high-end professional commercial branding
Project 02

Network Vulnerability Assessment & Pentesting

A comprehensive internal and external network penetration test of a hybrid OT/IT manufacturing enterprise (NordForge Industries) following a merger. The engagement chained a forgotten external VPN endpoint with weak credentials into LLMNR/NBT-NS poisoning, NTLM relay, and an unpatched domain controller (ZeroLogon / Kerberoasting) to prove full Active Directory domain compromise — then delivered network segmentation, SMB signing enforcement, and legacy protocol teardown to prevent ransomware-scale impact.

Explore Case Study
Sponsored Links

Subscribe to my newsletter

Receive my case study and the latest articles on my WhatsApp Channel.

Warning