Security Engineering Portfolio

LONAVA

An interactive web security and detection engineering lab built to simulate attack behavior, generate structured telemetry, and explain how defenders turn suspicious activity into actionable alerts.

Open SQL Injection Lab View Projects

Featured Lab

Built around attack simulation, telemetry, and detection logic

Attack Simulation

LONAVA provides hands-on labs for common web attack patterns such as SQL injection, XSS, brute force activity, and path traversal.

Security Telemetry

Each lab is designed to show what defenders would log, including payloads, routes, severity, result counts, and detection reasoning.

Analyst Training

The site explains why each field matters, helping connect offensive behavior to SOC workflows and detection engineering decisions.

Attack Labs

Explore the LONAVA learning modules

Live

SQL Injection

Search a simulated Pokémon database, test vulnerable query behavior, and inspect generated detection telemetry.

 Planned

Cross-Site Scripting

Review script injection attempts, suspicious input patterns, and browser-side security telemetry.

 Planned

Brute Force Login

Track repeated failed login attempts and learn how frequency-based detection logic identifies credential attacks.

 Planned

Path Traversal

Analyze attempts to access unauthorized files through traversal patterns and encoded directory sequences.

Project Portfolio

Security projects under PJMSCode

LONAVA

Interactive detection engineering lab focused on web attack simulation, JSON telemetry, and analyst education.

View Lab

Mobile Security Analysis

Case study space for mobile application security research, reverse engineering notes, credential exposure findings, and remediation takeaways.

View Project

Capstone Project

Case study space for documenting the problem, technical approach, security impact, and lessons learned from the capstone build.

View Project

Homelab

Multi-network security lab with AD, DNS, SIEM, and segmented environments designed to simulate enterprise infrastructure and detection workflows.

Coming Soon

Detection Pipeline

How LONAVA turns activity into security signal

1

User Input

A visitor submits normal input or an attack-style payload into a lab endpoint.

2

Application Response

The lab shows how a vulnerable application could respond to the submitted input.

3

Telemetry Event

The behavior is converted into structured JSON containing context defenders would need.

4

Detection Reasoning

The event is explained through severity, route, payload, status, and analyst-focused field definitions.

About Me

Security Engineer focused on detection and real-world systems

I am a Cybersecurity Engineer focused on detection engineering, security operations, and building practical systems that simulate real attack behavior. My work centers on bridging offensive techniques with defensive visibility through structured telemetry and detection logic.

LONAVA is my primary project, designed to reflect how modern SOC environments analyze threats, generate alerts, and interpret attacker behavior. In addition to web security, I also work on homelab infrastructure, mobile security analysis, and applied security research.