usama rasheed
Web security expert & pentesting specialist.
New to Contra
usama is building their profile!
Emergency recovery and malware removal for a compromised website, transforming it from a hacked state to a fully secured, hardened, and operational platform.
0
6
An end-to-end vulnerability management framework designed to transform vulnerable infrastructure into fully secured and hardened systems.
0
7
The Project Overview
Traditional rule-based phishing detection mechanisms struggle to keep up with modern cyber threats. To solve this, I engineered PhishX, an intelligent, AI-driven sandbox capable of analyzing and classifying malicious URLs in real-time.
How the AI Works
The uploaded screenshots demonstrate how the framework handles different real-world security scenarios dynamically:
Scenario 1 (Green): Verifying legitimate URLs and matching them against safe profiles.
Scenario 2 (Red): Intercepting active phishing vectors with a high risk-score (92.6%).
Scenario 3 (Yellow): Resiliently handling dead or offline links by predicting intent purely through URL structure.
Explainable AI (XAI) Integration
Instead of acting as a "black box," PhishX integrates SHAP (SHapley Additive exPlanations) metrics. This ensures absolute transparency by displaying exactly which features—such as lines of code, URL similarity index, or external references—contributed to the final security classification.
0
17
A snapshot of a recent Web Application Security Assessment. This report details critical and medium-risk vulnerabilities identified during deep-level penetration testing, along with a complete remediation roadmap to secure the application against future attacks.
0
27