🚀 My Projects

Enterprise-level applications built with modern technologies and best practices

⚙️

TechOps Manager

Enterprise Technical Operations Management Platform

A comprehensive enterprise-grade single-page application (SPA) designed for managing technical operations. Built with modern web technologies, this platform provides secure authentication, real-time API integration, and an intuitive user interface for streamlined operations management.

🛠 Technology Stack

Vue 3.5.13 Vite 6.4.2 Vue Router 5.0.4 PrimeVue 4.5.5 AWS Cognito 6.3.16 Axios 1.16.0 Vitest 4.1.4 ESLint 10.2.0 Sass 1.86.0

🎯 Key Highlights

  • Authentication & Security: AWS Cognito integration with JWT token management and secure session handling
  • Modern UI/UX: Enterprise-grade PrimeVue components with Aura theme preset and dark mode support
  • API Integration: Axios-based HTTP client with interceptors for automatic authentication token injection
  • Code Quality: ESLint security plugin, 80% test coverage target with Vitest, and comprehensive testing suite
  • Performance: Vite build tool with HMR, code splitting, tree shaking, and optimized production builds
  • Developer Experience: Hot Module Replacement, fast build times, and modern development workflow

✨ Core Features

AWS Cognito Authentication
JWT Token Management
API Request Interceptors
Responsive Design
Dark Mode Support
Unit Testing (80% coverage)
Security Linting
Production Optimization
Route Guards
Error Handling
Loading States
Form Validation
Type: Single Page Application (SPA)
Framework: Vue 3 (Composition API)
Build Tool: Vite 6
Status: Production Ready
Source code is proprietary — built for company internal use
🔐

DevSecOps Security Auditing Platform

Full-Stack Security Intelligence Platform (FastAPI + Vue 3, GitHub CI/CD)

An enterprise-grade DevSecOps security auditing platform with 15 scanning modules covering web, SFTP/SSH, FTP, AWS, Azure, and GCP infrastructure. Deployed on AWS EC2 (Docker/Nginx) and AWS Lambda (serverless), it combines zero-trust authentication, async penetration testing, AI-powered remediation, and multi-format reporting into a single unified security intelligence solution.

🛠 Technology Stack

FastAPI Vue 3 Python AWS Cognito DynamoDB AWS EC2 AWS Lambda Docker Nginx OpenAI GPT-4o-mini WeasyPrint GitHub CI/CD

🎯 Key Highlights

  • 15 Scanning Modules: Comprehensive coverage across web, SFTP/SSH, FTP, AWS, Azure, and GCP infrastructure
  • Zero-Trust Auth Layer: Cognito JWT/JWKS verification, DynamoDB feature-flag whitelist, and 90-day audit logging enforcing least-privilege
  • Async Pen Testing Suite: DNS recon, subdomain takeover detection, SSL/TLS auditing, HTTP header grading, directory brute-forcing, and JWT analysis
  • RBAC with MFA: Role-based access (admin/analyst/viewer) via AWS Cognito with SMS/TOTP MFA and automatic JWT token refresh
  • AI-Powered Remediation: Offline knowledge base + OpenAI GPT-4o-mini generating contextual fix advice per scan finding
  • Multi-Format Reports: PDF (WeasyPrint), CSV, JSON, and HTML with scan-specific and multi-cloud combined templates
  • OWASP Controls: SSRF protection (blocking private/loopback IPs), per-user audit logging, and input validation across all scanner endpoints

✨ Core Features

DNS Recon & Subdomain Takeover
SSL/TLS Vulnerability Auditing
HTTP Header Grading
Directory Brute-Forcing
JWT Analysis
AWS / Azure / GCP Scanning
SFTP/SSH & FTP Security Checks
AI Remediation Engine
Zero-Trust Authentication
Role-Based Access Control
MFA (SMS/TOTP)
PDF/CSV/JSON/HTML Reports
90-Day Audit Logging
SSRF Protection
Serverless + Container Deploy
Type: Full-Stack Security Platform
Backend: FastAPI (Python)
Frontend: Vue 3
Deployment: AWS EC2 + Lambda
Status: Production Ready
View on GitHub
🛠️

DevOps Portal

Self-Hosted DevOps Platform (Vue 3 + FastAPI + Keycloak OIDC)

A self-hosted DevOps portal built with Vue 3, FastAPI, and Keycloak OIDC authentication. Centralises AWS infrastructure management, Kubernetes operations, CI/CD pipelines, and observability in a single role-aware UI — with a full audit trail for every write operation.

🛠 Technology Stack

Vue 3 FastAPI Keycloak 26 (OIDC/PKCE) Python 3.9 boto3 (AWS SDK) Kubernetes Python Client ArgoCD 2.14 SQLite Vite Docker Compose kind

🎯 Key Highlights

  • ECS Management: List clusters & services, restart, scale task count, launch Fargate clusters, and delete — all from the UI
  • CodePipeline: Stage & action status visualization, trigger/stop executions, and recent execution history
  • CloudWatch Logs: Browse log groups by prefix, select streams, view & filter log events with a dark terminal viewer
  • Kubernetes: Namespace selector, pod status table, container log viewer (with tail size), and restart pods
  • ArgoCD Integration: Embedded ArgoCD UI via iframe with app-of-apps GitOps pattern
  • Keycloak Auth & RBAC: PKCE/OIDC with realm roles — admins get full write access, regular users get read-only
  • SQLite Audit Log: Automatic trail of every write operation — who did what and when (admin-only view)

✨ Core Features

Live Dashboard Stats
ECS Cluster & Service Management
CodePipeline Visualization
CloudWatch Log Browser
Kubernetes Pod Management
ArgoCD Embedded UI
Keycloak OIDC / PKCE Auth
Role-Based Access Control
User Management (Admin)
SQLite Audit Trail
JWT Verification (JWKS)
kind Local Cluster Support
Type: Self-Hosted DevOps Platform
Backend: FastAPI (Python 3.9)
Frontend: Vue 3 + Vite
Auth: Keycloak 26 OIDC
License: MIT
View on GitHub
← Back to Portfolio Home