Technical Portfolio.

Engineered systems focusing on zero-trust architecture, cloud-native storage, and automated infrastructure.

Hardened Cloud-Native Storage

GCP Compute Engine Identity-Aware Proxy S3 Object Storage Docker Compose

Designed and deployed a resilient, stateless Nextcloud instance on Google Cloud Platform. This architecture prioritizes security through Identity-Aware Proxy (IAP), ensuring that only authenticated users can access the VPC-contained services.

Key Technical Features:

  • Zero-Trust Access: Leveraged GCP IAP to create an authenticated tunnel, bypassing the need for traditional VPNs.
  • Stateless Architecture: Integrated Google Cloud Storage as the primary S3 backend, decoupling user data from the VM disk.
  • Reverse Proxy & SSL: Automated certificate management and SSL termination via Caddy.
  • Backend Optimization: Containerized MariaDB and Redis for performant database and memory caching.
View on GitHub → Live Demo →

System Architecture Diagram

StillThread Cloud Storage Architecture

Security Log Analyzer & Visualization

Python Pandas Regex Matplotlib

Engineered a security-focused log analysis tool to parse, normalize, and visualize authentication events. This project automates the detection of brute-force patterns and provides actionable intelligence on unauthorized access attempts across distributed system logs.

Key Technical Features:

  • Pattern Ingestion: Utilized optimized Regular Expressions (Regex) to normalize unstructured Auth.log and Syslog data into structured Python DataFrames.
  • Anomaly Detection: Developed logic to flag high-frequency failure signatures indicative of automated credential stuffing.
  • Security Visualization: Built time-series heatmaps of authentication failures to identify peak attack windows and origin IP geolocations.
  • Automated Auditing: Implemented a modular reporting engine that generates structured summaries for incident response and compliance auditing.
View on GitHub →

Threat Visualization Preview

Geospatial Threat Map