AI / THREAT DETECTION
DeepShield My most ambitious project — a unified Django deep-learning platform that detects three classes of cyber threat — malicious URLs, malicious files, and fraudulent transactions — behind one authenticated dashboard with per-user scan history. For malware and URL detection I designed a custom algorithm, built over six months, that runs XGBoost inside a deep-learning framework (rather than classic machine learning), combining XGBoost with a range of Python libraries to produce a deep-learning model that detects both malware and malicious URLs. The fraud module uses a rule + ML ensemble (99.98% accuracy, 0.9998 ROC-AUC) enriched with live threat-intelligence APIs. Final-year project (grade 83).
Python Django XGBoost +5 Completed
AUTOMATION
X Bot Project A Twitter/X bot that posts verses from the Holy Quran every hour in both Arabic and English. It traverses the entire Quran sequentially from Surah Al-Fatiha to Surah An-Nas, then loops back. Powered by GitHub Actions and the Al-Quran Cloud API.
Python Tweepy GitHub Actions +1 In Progress
CYBERSECURITY
Keylogger This is a keylogger. In the simplest terms, it can capture user keystrokes, mouse clicks, window changes, and file system events such as file and folder creation, deletion, and movement. It also includes a simple GUI and supports log generation.
Python pynput watchdog +2 Completed
CYBERSECURITY
Password Analyzer A password analyzer that uses the Have I Been Pwned API to check whether your password has been leaked or exposed in any data breaches. It can also generate strong and secure passwords for users. The tool provides useful security tips to help protect your accounts and reduce the risk of future compromises.
Python Flask Have I Been Pwned API +2 Completed
CYBERSECURITY
CyberSentinel Honeypot An interactive Django honeypot with an adaptive firewall. It lures attackers with a fake login portal, classifies eight attack vectors (SQLi, XSS, command injection, path traversal, LFI/RFI, brute-force, scanners) across the full request surface, enriches events with GeoIP/TOR intelligence, fires Slack/Discord webhook alerts, plants canary tokens, and auto-blocks malicious IPs at both the application and OS level (iptables / netsh). Includes a real-time Chart.js forensics dashboard and an IOC export feed.
Python Django Middleware +3 Completed
CYBERSECURITY
Secure Cloud Storage A Flask-based encrypted file vault built on hybrid AES-256-GCM + RSA-2048 encryption. Hardened with TOTP multi-factor authentication, HttpOnly/SameSite cookie sessions, CSRF protection, account lockout, rate limiting, and a layered routes/services/security architecture. University dissertation project with 38 passing tests.
Python Flask PyCryptodome +3 Completed
BACKEND / IR
Search Engine A multi-source search engine built from scratch in Python, following a Crawl → Index → Rank → Search pipeline. A polite crawler gathers pages from 11 verified sources (~2,000 pages, 243k+ unique terms); an inverted index with tokenization and stemming powers TF-IDF ranking; and the UI adds autocomplete, spell correction, and SimHash near-duplicate detection — served through a Django frontend with a statistics dashboard.
Python Django Web Crawler +3 Completed
CYBERSECURITY
The Big Big Secret A local, offline password vault with a modern dark CustomTkinter desktop UI. Credentials are stored behind a master key in an encrypted local store, with a built-in strong-password generator — no cloud, no telemetry.
Python CustomTkinter Cryptography Completed
WEB / FULL-STACK
Sohar Port Storage Solutions A web-based warehouse management and reservation platform for Sohar Port, Oman. Customers can browse storage services, register securely, reserve and modify warehouse space, and manage their bookings through a responsive, logistics-themed PHP/MySQL site. Built as a Middle East College coursework project following the full SDLC.
PHP MySQL JavaScript +2 Completed
RED TEAM / RESEARCH
RAT Framework An educational C# remote-administration framework (client/server) built to study malware tradecraft for defensive research. It uses an AES-encrypted command channel over raw TCP sockets. Developed strictly for learning detection and defense — not for real-world deployment.
C# .NET Sockets +1 Completed
AUTOMATION / RESEARCH
SMMR — Social Media Automation A browser-automation research project using Playwright to drive a real Chromium session end-to-end — credential login, persistent saved sessions, multi-account rotation, randomized human-like delays, and webdriver-fingerprint evasion. Built to explore anti-bot detection and resilient UI automation against frequently-changing web frontends.
Python Playwright Chromium +1 Completed
AI SECURITY / STUDY
Heretic (Tool Studied) A third-party open-source tool I studied and experimented with — Heretic, by Philipp Emanuel Weidmann (p-e-w), automatically removes safety refusals ("abliteration") from transformer language models without retraining. I used it to research LLM alignment, refusal mechanisms, and model-safety internals. Authored by p-e-w — not my own work.
Python PyTorch Transformers +1 Completed