HomeAboutExperienceProjectsContact
Avatar
¡Hola! Soy

kdandy

Security Researcher & DevOps Engineer

Security meets DevOps. Focused on SOC, Offensive Security, Secure SDLC & Cloud-Native.

Explore My WorkGet in Touch

About

Engineering security. Automating excellence.

I am a Security Researcher and DevOps Engineer with expertise in SOC Analysis, Offensive Security, Secure SDLC, and Cloud-Native Architecture. My focus is on building resilient systems that protect organizations from evolving cyber threats.

I partner with enterprises to design secure infrastructure, implement DevSecOps practices, and develop automated solutions for complex security challenges. From penetration testing to cloud security architecture, I deliver results that matter.

6
Years Experience
348
Projects Delivered
131
Clients Served

Skills & Tools

Security

SOC AnalysisOffensive SecuritySecure SDLCPenetration Testing

DevOps

Cloud-NativeKubernetesCI/CDInfrastructure as Code

Technologies

AWSDockerTerraformPython

Experience

Professional journey in security and engineering.

2022 — Present

Security Researcher & DevOps Engineer

Independent Consultant

Providing security consulting, penetration testing, and cloud-native architecture design for enterprise clients across multiple industries.

KubernetesAWSTerraformPython
2020 — 2022

DevOps Engineer

Enterprise Technology

Designed and implemented secure CI/CD pipelines, established DevSecOps practices, and led infrastructure automation initiatives.

DockerJenkinsGitLab CISAST/DAST
2019 — 2020

Security Analyst

Cybersecurity Firm

Executed penetration testing engagements, performed vulnerability assessments, and managed SOC operations for critical infrastructure.

SIEMBurp SuiteNmapMetasploit

Projects

Open source work from GitHub.

10

invisibleCoder

This project provides a powerful alternative to premium coding interview platforms. It delivers the core functionality of paid interview preparation tools but in a free, open-source package.

TypeScript
View Repository
4

NetworkSentinel

NetworkSentinel is an AI-powered real-time packet sniffing and network exploitation framework. It captures live network traffic, classifies sensitive data using machine learning.

Python
View Repository
2

DataExtractor

A Burp Suite extension to extract datas from source code while browsing.

Python
View Repository
1

RedOps

RedOps is a network and security testing tool. Key features: subdomain discovery, port scanning, and vulnerability testing. New features: Reverse DNS Lookup, DNS Zone Transfer Testing, Open Redirect Detection.

Python
View Repository

SubSentry

Automated subdomain takeover detection tool leveraging AI to identify misconfigured CNAME records, abandoned services, and potential security risks.

Python
View Repository

Keylogger BadUSB

BadUSB Keylogger project using PowerShell for security research purposes.

PowerShell
View Repository
View all repositories →

Contact

Let's discuss your security needs.

Avatar

Send Message

Looking for expertise in cybersecurity, cloud architecture, or DevSecOps? I'm available for consulting engagements and collaboration opportunities.

or connect on