Cybersecurity Professional

ARSHADTK

Penetration Tester · Web App Security · Network Analyst
Based in Malappuram, Kerala · Seeking internship opportunities

arshad@kali — bash

View Projects →Contact Me ↓ Resume

Projects

Certifications

Core Skills

01 · About me

Securing the
digital world

I'm an entry-level cybersecurity enthusiast focused on web application security and penetration testing. I actively work on identifying vulnerabilities such as XSS, SQL Injection, and authentication flaws through hands-on labs and real-world simulations. I have practical experience using tools like Burp Suite, Nmap, Wireshark, and Metasploit for reconnaissance, testing, and traffic analysis.

Alongside my learning, I build security-focused projects like phishing detection tools to apply both cybersecurity and programming skills. Currently pursuing an Advanced Diploma in Information Security (ADIS), I continuously improve through CTF challenges and platforms like TryHackMe, with the goal of contributing to securing real-world systems.

Penetration TestingWeb App SecuritySQL InjectionEnumerationPrivilege EscalationNetwork SecurityVulnerability AssessmentOSINTXSSWAF BypassCTF Challenges

02 · Arsenal

Technical Skills

🔴

100%

Offensive Security

Network enumeration, exploitation, privilege escalation, and controlled attack scenarios.

🛡️

80%

Web App Pentesting

SQL injection, XSS, authentication flaws, OWASP Top 10, WAF analysis and bypass.

🌍

80%

OSINT & Recon

Subdomain enum, social media mapping, footprint analysis, and intelligence gathering.

💣

65%

Basic Exploitation

Familiarity with Metasploit framework for basic exploitation and common attack workflows.

🔗

75%

Networking Fundamentals

Strong understanding of TCP/IP, DNS, and HTTP/HTTPS — essential for analyzing and securing network communications.

📡

70%

Packet Analysis

Using Wireshark to capture and analyze network traffic, identify anomalies, and understand communication patterns.

// skill_radar.exe

Current

Target

03 · Operations

Featured Projects

filter:

AI · ML

Phishing Detector

ML-powered security tool that analyzes URLs, emails, and web content to detect phishing attacks in real-time using feature-based classification techniques.

PythonScikit-learnFlaskRandom ForestDocker

hover or click to flip ↻

// project_details

Phishing Detector — ML Engine

Trained on labeled datasets to classify phishing and legitimate URLs using machine learning and heuristic analysis. Designed for real-time detection and easy deployment via API.

🎯 94% Accuracy⚡ Real-time🐳 Dockerized

→ github.com/arshad9061/phishing-detector

IDS · Network

NetWatchdog

Network monitoring tool designed to track active connections, detect new devices, and analyze network activity for security awareness and anomaly detection.

PythonNetwork MonitoringTraffic AnalysisAutomation

hover or click to flip ↻

// project_details

NetWatchdog — Network Monitoring

Monitors network activity in real-time, identifies connected devices, and analyzes traffic patterns to detect unusual behavior and potential security risks.

📡 Real-time Monitor🌐 Device Detection⚡ Traffic Analysis

→ github.com/arshad9061/netwatchdog

AppSec · Suite

CyberGuard Pro

Integrated cybersecurity tool designed to analyze system and network security, identify potential vulnerabilities, and provide basic protection insights.

PythonSecurity AnalysisVulnerability DetectionAutomation

hover or click to flip ↻

// project_details

CyberGuard Pro — Security Suite

Performs basic security checks, analyzes system/network behavior, and identifies potential risks through automated scanning and monitoring techniques.

🛡️ Security Analysis🔍 Vuln Detection⚡ Auto Scanning

→ github.com/arshad9061/CyberGuard-Pro

OSINT · Social

SocialMapper Pro

OSINT-based reconnaissance tool designed to gather and correlate social media profiles for intelligence analysis and security assessments.

PythonOSINTData CorrelationRecon Automation

hover or click to flip ↻

// project_details

SocialMapper Pro — OSINT Tool

Collects and analyzes publicly available social media data to map user presence across platforms, supporting reconnaissance and profiling during security assessments.

🌐 Social Recon🔍 Data Correlation⚡ Auto OSINT

→ github.com/arshad9061/SocialMapper-Pro

Web Security · WAF

WAF-Bypass-Lab

Hands-on lab focused on understanding and bypassing Web Application Firewalls using payload obfuscation, encoding techniques, and filter evasion methods.

PythonWAF EvasionPayload CraftXSS / SQLi

hover or click to flip ↻

// project_details

WAF-Bypass-Lab — Research Lab

Demonstrates techniques to bypass WAF protections, including encoding, case manipulation, and payload obfuscation to evade detection in web applications.

⚡ Payload Obfuscation🛡️ WAF Evasion🔍 Filter Bypass

→ github.com/arshad9061/WAF-Bypass-Lab

Recon · Framework

ReconX

Multi-threaded reconnaissance tool for penetration testers and security researchers. Automates subdomain discovery, live host detection, and secret scanning.

PythonMulti-threadingSubdomain EnumRecon Automation

hover or click to flip ↻

// project_details

ReconX — Reconnaissance Engine

Performs automated subdomain enumeration, live host validation, and sensitive data detection across target domains. Designed for fast information gathering during penetration testing.

⚡ Fast Scanning🌐 Subdomain Discovery🔍 Secret Detection

→ github.com/arshad9061/ReconX

03.5 · Live Demo

Attack Simulations

SQLmap · Injection Simulation

EDUCATIONAL

Metasploit Framework Console

CONTROLLED LAB

04 · Impact

Key Achievements

🚀

Security Tools Built

Six open-source cybersecurity tools on GitHub — from ML phishing detection to WAF bypass research and modular recon frameworks.

🎯

94%

ML Detection Accuracy

Achieved 94%+ phishing detection accuracy with Random Forest trained on 10,000+ labeled URL and email samples.

🛡️

ADIS

Enrolled at Offenso

Advanced Diploma in Information Security at Offenso Academy, Calicut — one of India's premier ethical hacking institutes.

05 · Credentials

Certs & Awards

🏆

Certified Cybersecurity Educator Professional (CCEP)

Red Team Leaders

March 2026

🛡️

Deloitte Cyber Job Simulation

Deloitte / Forage

2026

06 · Background

Education & Learning

2025 — Present

Currently Enrolled

Advanced Diploma in Information Security (ADIS)

🎓 Offenso Academy, Calicut, Kerala

Comprehensive training in ethical hacking, penetration testing, network security, and web application security.

2021 — 2023

Higher Secondary Education — Commerce

📚 Higher Secondary School, Kalpakanchery, Kerala

Completed higher secondary education with commerce stream, building foundational analytical skills.

07 · Playground

Hack the Terminal

arshad@portfolio:~$ — interactive shell v6.0 · Tab = autocomplete

[ ✓ ] Portfolio shell v6.0 — type help · press Tab to autocomplete

────────────────────────────────────────

arshad@portfolio:~$

press Tab to autocomplete · ↑↓ arrow keys for history

helpwhoamiskillsprojectsachievementscontacttoolsnmap scansqlmapmsf consolesecret.txthacker modematrixclear

09 · Toolkit

Tools I Use

🗺️NmapPort Scanner

🕷️Burp SuiteWeb Proxy

💣MetasploitExploitation

🔍WiresharkPacket Analysis

🛡️WPScanCMS Audit

🌐GobusterDir Bruteforce

👁️NiktoWeb Scanner

💉SQLmapSQL Injection

⚡FfufFuzzer

🔑HydraPassword Cracker

🐳DockerContainers

🐍PythonAutomation

10 · Connect

Let's Talk

Open to cybersecurity internships, penetration testing engagements, and collaborations. Based in Malappuram, Kerala. I respond within 24 hours.

📧arshadtk767@gmail.com→💼linkedin.com/in/arshad-tk→🐙github.com/arshad9061→📸instagram.com/ars_ha._dddd→

ARSHADTK

Securing thedigital world

Technical Skills

Featured Projects

Phishing Detector

NetWatchdog

CyberGuard Pro

SocialMapper Pro

WAF-Bypass-Lab

ReconX

Attack Simulations

Key Achievements

Certs & Awards

Education & Learning

Hack the Terminal

Tools I Use

Let's Talk

Securing the
digital world