Cybersecurity Analyst and Automation Engineer specializing in Offensive Security, Workflow Automation, and Wi-Fi sensing research. Bridging the gap between red team methodology and highly efficient system integration.
I am a Cybersecurity Analyst and Automation Engineer based in Islamabad. I specialize in replacing manual operational bottlenecks with secure, highly scalable backend architectures.
Wi-Fi-Based Intrusion Sensing & Presence Recognition
Air University, Islamabad · Dept. of Cyber Security (NCSA) · 2022–2026
WISPR is a completed R&D embedded-system project that demonstrates a critical Wi-Fi physical-layer privacy vulnerability. Using two commodity ESP32 nodes costing under $40 total, the system passively monitors Channel State Information (CSI) from ambient 802.11n Wi-Fi signals — detecting human presence, classifying motion state, and inferring movement direction through walls in real time, without any network credentials or cameras.
The system exploits the fact that every Wi-Fi packet carries unencrypted physical-layer information (CSI) that reflects off human bodies. By deploying two spatially separated sensor nodes and applying a multi-stage signal processing pipeline — EMA smoothing, rolling percentile normalization, dual-threshold hysteresis detection, and a four-strategy direction inference algorithm — WISPR achieves spatial tracking entirely passively.
Proves that WPA2/WPA3 encryption provides zero protection against CSI-based sensing — the physical layer is unencrypted by design.
2.4 GHz signals penetrate walls. WISPR detects occupancy and walking direction from outside the monitored space, entirely undetected.
Sequential rise events, fall-then-rise pairs, simultaneous digit gradient, and single-node asymmetry — applied in order for robust A→B / B→A classification.
Previous CSI research required $200+ Intel NICs. WISPR replicates full direction tracking with two ESP32 modules at under $40 total.
Hands-on penetration testing skills across network and web attack vectors.
Globally recognized certification covering security principles and risk management.
Threat analysis, SIEM tools, Python automation, and security operations skills.
Foundation in system administration, networking, OS, and security fundamentals.
Expertise in red team methodologies, adversary simulation, and attack chains.
Advanced Active Directory exploitation, lateral movement, and domain dominance.
Web app penetration testing, custom payload delivery, and WAF evasion.
Advanced multi-cloud attacks, leveraging misconfigurations across cloud providers.
Practical proficiency in network vulnerability exploitation and assessment.
Knowledge in securing enterprise networks and implementing defense strategies.
Available for enterprise automation consulting, CRM integration, and security assessments. Whether you need a scalable backend workflow architected, a security researcher, or an automation engineer — let's discuss your architectural needs.