Network Security
Traffic Analysis & Firewall
Packet capture and analysis with Wireshark — identifying anomalous traffic, protocol misuse, and cleartext credential transmission. UFW firewall configuration and rule review.
Web Testing
WebGoat & OWASP ZAP
Hands-on exploitation of OWASP WebGoat vulnerabilities using OWASP ZAP — SQLi, XSS, XXE, insecure deserialization, and access control bypass.
API Security
API Security Testing
REST API endpoint discovery, authentication testing, parameter tampering, and OWASP API Top 10 vulnerability validation across internship lab targets.
Reporting
Professional Security Reporting
Structured security reports for each engagement area — executive summary, technical findings, CVSS scoring, evidence, and remediation guidance.