Full Stack Engineer & Security Researcher with a strong focus on application security, CI/CD hardening, and secure system design. I build production-grade software while actively researching real-world vulnerabilities across modern software stacks.

• 💻 Full Stack Engineer with 3+ years of hands-on experience
• 🔐 Active Security Researcher focused on CI/CD, supply chain, and application security
• ⚙️ Strong background in Linux-based systems and backend-heavy architectures
• 🤖 Integrating AI into development and security workflows for automation and analysis
• 🧪 Passionate about building, breaking, and securing real systems

Languages

• PHP, Go, Python, SQL, Bash

Backend & Infrastructure

• REST APIs, Microservices
• PostgreSQL, MongoDB, Redis
• Docker, Docker Compose
• Nginx, Linux (Ubuntu / Kali)

DevOps & CI/CD

• Git, GitHub
• GitHub Actions
• Secure CI/CD pipeline design
• Supply-chain risk analysis

Security

• Application Security
• CI/CD & Pipeline Security
• Vulnerability Research
• Secure Architecture & Threat Modeling

Tools

• VS Code
• Postman
• Burp Suite
• Custom security tooling

• Designing secure-by-default backend systems
• Identifying and exploiting real-world vulnerabilities responsibly
• Hardening CI/CD pipelines against common and advanced attack vectors
• Automating security analysis with AI-assisted workflows

This profile includes:

• Security research & proof-of-concept projects
• Backend and infrastructure-focused implementations
• CI/CD experiments and security tooling
• Personal and experimental projects

Some research repositories may be private or redacted due to responsible disclosure policies.

• GitHub: https://github.com/anomaly-ismail
• Open to collaboration, security research, and engineering opportunities

“Security is not a feature — it’s a process.”