4. Security & Compliance

Scans APIs for security vulnerabilities including injection, broken authentication, and data exposure.

Validates web content against WCAG standards, checking ARIA, keyboard navigation, and screen reader compatibility for accessibility compliance.

Implements database audit logging through triggers, CDC, or native logs to track changes for security and compliance monitoring.

Audits access control implementations to identify security vulnerabilities and misconfigurations in authentication and authorization systems.

Audits Helm charts for security vulnerabilities, anti-patterns, and best practice violations, generating a detailed compliance report.

Audits Terraform code for security issues, anti-patterns, and best practice violations, generating a detailed compliance report.

Conducts dynamic malware analysis in sandboxed environments, monitoring runtime behavior, network traffic, and system changes to assess threats.

Generates Sigma rules for SIEM, Suricata network IDS rules, and defangs IOCs from malware analysis to enable actionable threat detection for SOC teams.

Generates professional malware analysis reports including technical documentation, executive summaries, and IOC formatting for enterprise security teams.

Analyzes specialized file formats including .NET assemblies, Office macros, PDFs, and scripts for security vulnerabilities and malicious content.

Provides a systematic workflow for initial malware assessment, classification, and threat identification to guide analysis priorities and next steps.

Enforces multi-layer data validation to prevent failures from invalid data, making bugs structurally impossible via defense-in-depth security principles.

Scans project dependencies for known vulnerabilities, generates security reports, and suggests fixes for npm and pip packages.

Generates essential security HTTP headers (CSP, HSTS, CORS) to protect web applications from common vulnerabilities like XSS and data leakage.

Detects personally identifiable information in code, logs, databases, and files to ensure GDPR and CCPA compliance.

Checks websites for WCAG 2.1 Level AA accessibility compliance, identifies violations, and provides remediation guidance.

Operates blockchain lottery systems with Verifiable Random Functions (VRF) to guarantee tamper-proof draws and secure payout execution.

Provides practical guidelines for designing secure authentication/authorization systems, including threat modeling, token management, and access control validation.

Generates security and compliance audit reports using UUID chains, progressive writing, and UTC+7 timestamps for traceability and regulatory adherence.

Specializes in implementing and verifying HTTP security headers including CSP, HSTS, and X-Frame-Options for web application hardening.

Provides a secure workflow for cryptographic implementation including algorithm selection, key management, and CSPRNG, aligned with NIST standards.

Universal classification system for security agents using criticality (CRITICAL/HIGH/MEDIUM/LOW) and confidence (HIGH/MEDIUM/FALSE_POSITIVE) to prioritize and report audit findings.

Conducts unified security configuration reviews, audits, and baseline checks using threat modeling and best practices to enhance application security posture.

Designs enterprise-grade secret management architecture with Vault/KMS integration, key rotation, and access control matrices for secure credential lifecycle management.