Projects & Achievements
A showcase of my work across cybersecurity, full-stack development and embedded systems — from offensive testing and SOC operations to IoT and robotics.
API Penetration Test & Automation Dashboard
Offensive Security • OWASP API Top 10
Complete OWASP API Security Top 10 audit against VAmPI, paired with a custom dashboard that reproduces the entire audit automatically — parse OpenAPI, run each attack module, persist evidence and export a report.
Key Highlights
- 6 vulnerabilities across 4 OWASP API categories — 4 lead to full admin compromise
- Cracked HS256 JWT secret with hashcat (mode 16500) and forged admin tokens
- Chained BOLA + Mass Assignment for unauthenticated account takeover
Distributed SOC with AI-Powered Triage
Blue Team • SIEM / SOAR
A fully functional open-source Security Operations Center spanning two physical hosts, integrating SIEM, incident response and SOAR into one pipeline — with a locally-hosted Llama 3 model for AI alert triage.
Key Highlights
- Wazuh (SIEM/HIDS) + TheHive + Cortex + Shuffle SOAR end-to-end pipeline
- Local Llama 3 (Ollama) for AI alert enrichment — no data leaves the lab
- ZeroTier mesh VPN with TCP-relay workaround for CGNAT traversal
Team: Amin Maddouri · Med Guizani
IP/MPLS Backbone with Firewall & DMZ
Network Security • Cisco ASAv
Enterprise IP/MPLS backbone hardened with redundant ASAv firewalls, a segmented DMZ hosting SMTP/WWW/DNS, high-availability failover, AAA and threat detection — integrated into Zabbix monitoring.
Key Highlights
- Dual Cisco ASAv firewalls with active/standby HA failover + stateful replication
- DMZ zone (SMTP/WWW/DNS) with strict ACL security policy & object groups
- OSPF routing across Federateurs, CE routers and firewalls
Emotet Malware — Complete Analysis
Malware Analysis • Threat Intel
End-to-end analysis of the Emotet banking trojan / loader: infection chain, persistence, command-and-control behaviour and indicators of compromise, mapped to the MITRE ATT&CK framework.
Key Highlights
- Studied the full Emotet kill chain — from malicious macro delivery to C2
- Static & dynamic analysis of behaviour, persistence and evasion techniques
- Extracted indicators of compromise (IOCs) for detection engineering
SafeClub — Blockchain DAO Treasury
Web3 Security • Solidity Smart Contract
A secure on-chain treasury and governance smart contract for a student club: members propose ETH spending, vote within a deadline, and funds are released only when quorum and majority are reached. Paired with a React + ethers.js dashboard.
Key Highlights
- Solidity DAO treasury (Vault) with a proposal → vote → execute governance flow
- Security hardening: OpenZeppelin Ownable access control + ReentrancyGuard on payouts
- Quorum + majority rules, deadline-bound voting with one-vote-per-member enforcement
Smart Surveillance Platform w/ Watermarking
Computer Vision • Full-Stack Monorepo
Full-stack AI surveillance monorepo combining real-time monitoring, a face-recognition pipeline and tamper-evident watermarking. A FastAPI backend (PostgreSQL, JWT, WebSockets) powers a React + TypeScript dashboard, with Docker Compose deployment and a pytest suite.
Key Highlights
- Face pipeline: detection, embedding generation & recognition with authorization classification
- Tamper-evident captures: image watermarking + SHA-256 integrity verification endpoint
- Real-time live monitoring via WebSocket broadcasting; JWT auth with access & refresh tokens
Team: Mouadh Boukari · Med Guizeni · Rim Menzli
Java IoT/AI Agricultural Optimization
Multi-Role App • Spring Boot & JavaFX
A Java IoT/AI application to optimize agricultural productivity with multi-role interfaces and predictive AI for eco-responsible recommendations.
Key Highlights
- Centralized sensor data (humidity, weather) with smart alert generation
- Multi-role interfaces (Farmer, Expert, Admin) with Spring Boot and JavaFX
- UML modeling and integration of predictive AI recommendations
Beauty Center — Salon Management System
Full-Stack • Spring Boot API · React · Tauri
A complete salon/beauty-center management system spanning three apps that share one secured REST API: a Java Spring Boot backend, a customer-facing React front office, and a Tauri 2 admin/staff desktop app. Covers appointments, scheduling, services, employees, client files and notifications — with JWT security, role-based access and a full audit trail.
Key Highlights
- Spring Boot modular-monolith API (auth, users, appointments, scheduling, services, client files, notes, notifications, audit) over PostgreSQL with Spring Data JPA & Flyway migrations
- Spring Security + JWT authentication with access & refresh tokens (custom JwtService / JwtAuthFilter) and role-based access control — Admin / Employee / Client
- Dedicated audit module (AuditEntry / AuditService) recording sensitive actions for compliance & traceability
Jobs & Internships Platform
Web App • Symfony 7 + Doctrine
A job and internship management platform where candidates browse, apply for and save offers, companies post and review applications, and administrators manage users and approvals — built with Symfony 7 on an MVC architecture.
Key Highlights
- Role-based access for Candidates, Companies and Administrators
- Eight Doctrine entities with custom repositories and service-layer business logic
- Application tracking, saved offers, company approval and admin activity logging
IoT Security System for Connected Visitors
Embedded • Raspberry Pi 4
An IoT security system for connected visitors using Raspberry Pi 4, implementing secure access control and monitoring with a friendly interface for security personnel.
Key Highlights
- Designed secure IoT system for visitor management
- Raspberry Pi 4-based access control and monitoring
- Integrated secure communication protocols
Parking Management CRUD Application
C Programming • GLADE GUI
A CRUD application for managing parking-lot data using C with a GLADE graphical interface and text-file persistence.
Key Highlights
- Comprehensive parking management system
- Full CRUD operations for data management
- GLADE-based graphical user interface
Arduino Line Follower Robot
Robotics • ENIT Competition
Arduino line follower robot with obstacle detection, built for the ENIT robotics competition with sensor fusion and control systems.
Key Highlights
- Line-following robot built with Arduino
- Integrated obstacle detection sensors
- Efficient line-tracking algorithms
Ultrasonic Radar System
Arduino • Distance Sensing
A radar system using an ultrasonic sensor and Arduino for real-time distance measurement and object detection.
Key Highlights
- Ultrasonic radar system with Arduino
- Real-time distance measurement algorithms
- Object detection and ranging
Collaborate on the Next Big Thing
I'm always excited to work on challenging cybersecurity, full-stack and embedded projects. Let's build something secure and impactful together!