Application Security | Web Security | Secure Code Review

Syed Muhammad Asees Shah

I work on application security, web security, and secure code review while building on my software development background. I use my own projects, labs, and write-ups to practice finding issues, fixing them properly, and explaining the work clearly.

Current focus Application Security, Web Security, Secure Code Review
Study BS Computer Science, University of Peshawar
Portrait of Syed Muhammad Asees Shah
Target role Application Security / Product Security Engineer
Core stack Python, PHP, JavaScript, SQL, Burp Suite, Postman, OWASP ZAP, GitHub

About

Building security depth on top of real software projects

I am a BS Computer Science student at the University of Peshawar. My main focus is Application Security, Web Security, API Security, and Secure Code Review.

Before making my profile public around security, I worked on software projects and also practiced ethical hacking and web application security. Now I am organizing that work properly through labs, reports, secure code reviews, and GitHub documentation.

I recently completed the first module of IBM's Application Security course, updated my public profiles, and reviewed one of my own PHP/MySQL project files for a SQL injection risk. I fixed the issue using input validation and a prepared statement.

All security work shown here is based on my own projects, legal labs, and authorized practice. I do not test systems without explicit permission.

Snapshot

Education BS Computer Science, University of Peshawar
Target role Application Security / Product Security Engineer
Current work IBM AppSec Module 1 completed, Week 1 labs documented, PHP/MySQL code reviewed and fixed
Mindset Find issues, understand root causes, fix them cleanly, and write clearly

Skills

Security areas and engineering tools

Projects

Security-focused work and software projects

Certifications

Training and credentials

Contact

Open to AppSec and Product Security opportunities

I am open to AppSec internships, junior security opportunities, project collaboration, and discussions around secure code review, web security, and ethical security practice.

My security work is limited to my own projects, legal labs, and authorized testing. I do not test third-party systems without permission.

Preview