Share
## https://sploitus.com/exploit?id=600F488D-4037-5A7C-80CF-BD9C70C57099
# Information Security Portfolio
A curated collection of nine end-to-end security projects, each one
covering a different attack surface in modern software systems β
applied cryptography, machine-learning-based malware detection,
malware unpacking, binary exploitation, web app pentesting, SQL
injection, Log4Shell, network forensics, and API security.
Every section is self-contained: you can `cd` into any subfolder and
read its `README.md` for the high-level write-up, the techniques
involved, and how to run the code.
## Table of contents
| # | Project | Headline technique |
| - | --- | --- |
| 01 | [Cryptography & RSA Attacks](./01-cryptography/) | VigenΓ¨re, Pollard-rho factoring, Heninger weak-key attack, HΓ₯stad broadcast, LSB / parity oracle |
| 02 | [ML for Malware & Intrusion Detection](./02-ml-security/) | Pandas/sklearn pipeline β Random Forest on CLAMP & UNSW-NB15 |
| 03 | [Malware Analysis](./03-malware-analysis/) | Base64 reconstruction, recursive 7-Zip unpacking, behavior tagging |
| 04 | [Binary Exploitation](./04-binary-exploitation/) | Stack overflows, ROP chains, XOR & arithmetic bypasses |
| 05 | [Web Security](./05-web-security/) | Reflected & stored XSS, DOM recon, CSRF |
| 06 | [Database Security](./06-database-security/) | UNION / boolean-blind / time-blind / out-of-band SQL injection |
| 07 | [Log4Shell (CVE-2021-44228)](./07-log4shell/) | JNDI lookup β LDAP β HTTP β in-memory RCE |
| 08 | [MITM & Network Forensics](./08-mitm-network-analysis/) | PyShark-based PCAP analysis, IRC / DNS / PGP triage |
| 09 | [API Security](./09-api-security/) | OWASP API Top-10: BOLA, JWT forgery, mass assignment |
## What's interesting in this repo
- **Cryptography that *actually breaks* RSA.** `01-cryptography/` is not
toy-RSA; it's working implementations of three classes of real-world
RSA attack: factoring small N, common-factor weak keys (Heninger et
al. 2012), and adaptive chosen-ciphertext via parity oracle.
All have unit tests and pass.
- **A leak-free ML pipeline.** `02-ml-security/` wires train/test split,
one-hot, MinMax, PCA, K-means cluster-as-feature, and four classifiers
(Naive baseline, LogReg+RFE, RF, GBT) into a single comparable
benchmark on two real datasets.
- **Tooling, not just write-ups.** `03-malware-analysis/`,
`08-mitm-network-analysis/`, and the rest ship runnable Python
utilities β recursive unpacker, PCAP analyser, behavior-report
validator β that you could drop into a triage pipeline today.
## Running the code
A combined `requirements.txt` covers every Python dependency in the
repo. From the root of this directory:
```bash
python -m venv .venv
source .venv/bin/activate
pip install -r requirements.txt
```
To run the cryptography test suite as a sanity check that everything
installed correctly:
```bash
cd 01-cryptography
python -m unittest test_cryptography_attacks -v
```
You should see 8 tests pass.
## Skills demonstrated
- **Languages & tooling** β Python, JavaScript (browser exploits), Bash,
SQL, JNDI/LDAP attack chains, Java class-file delivery.
- **Libraries** β `pandas`, `sklearn`, `yellowbrick`, `numpy`,
`pyshark`, `pwntools`, `python-jose`, `decimal` (high-precision
arithmetic for crypto attacks).
- **Concepts** β Public-key cryptanalysis, supervised ML for malware
detection, static & dynamic malware triage, return-oriented
programming, OWASP Top-10 (Web + API), packet-level forensics,
CVE deep-dives.
## Repository layout
```
info-security-portfolio/
βββ 01-cryptography/ # RSA attacks + Vigenere
βββ 02-ml-security/ # End-to-end malware classifier
βββ 03-malware-analysis/ # Unpacker + behavior validator
βββ 04-binary-exploitation/ # Pwn challenges
βββ 05-web-security/ # XSS / CSRF exploits
βββ 06-database-security/ # SQL injection
βββ 07-log4shell/ # CVE-2021-44228
βββ 08-mitm-network-analysis/ # PCAP analysis
βββ 09-api-security/ # OWASP API Top-10
βββ README.md # (this file)
βββ requirements.txt
βββ LICENSE
βββ .gitignore
```
## License
MIT. See `LICENSE`.