Srivanathisivakumar/Srivanathisivakumar

## `$ whoami` name: Srivanathi S degree: B.Tech Information Technology — Anna University, Trichy (2026) focus: Blue Team · Threat Detection · Incident Response · IoT Security languages: Python · Bash · Java location: Chennai, Tamil Nadu, India status: Open to all cybersecurity roles 🟢 Fresh B.Tech IT graduate from Anna University, Trichy, with a deep passion for **defensive security**. My final year project tackled real-world IoT firmware vulnerabilities — building a production-grade Zero-Trust OTA system from the ground up. I believe the best defenders understand how attackers think, which is why I actively practice on HackTheBox alongside building blue team tools. ## 🚀 Featured Project ### 🔐 [Zero-Trust Secure OTA Firmware Distribution System](https://github.com/Srivanathisivakumar/zero-trust-ota-iot) A **production-grade Zero-Trust firmware update system for ESP32 IoT devices** — built to defend against the exact attack classes behind botnets like Mirai. **What it defends against:** | Attack | Defence Mechanism | |---|---| | Malicious firmware injection | ECDSA-P256 digital signature verification | | Man-in-the-Middle tampering | SHA-256 integrity hashing | | Fake update server | Mutual TLS (mTLS) — both sides verify certificates | | Replay / rollback attacks | Anti-rollback version stamping in NVS | | OTA flooding | Sliding-window Intrusion Detection System | **Key upgrades built:** - 🔒 **Mutual TLS (mTLS)** — ESP32 and server both verify X.509 certificates via private CA - ⚡ **Hardware-accelerated AES-256** — 60–70% faster than software AES using ESP32's mbedTLS engine - 🛡️ **ESP32 Secure Boot** — eFuse-based hardware root of trust, blocks unauthorized firmware even with physical access - 📊 **Live security dashboard** — real-time browser dashboard (Flask + Chart.js + SQLite) showing attack detection, IDS alerts, and latency metrics - 🔍 **Sliding-window IDS** — catches both burst and slow-drip flooding attacks, unlike fixed-counter systems **Stack:** `Python` `Flask` `ESP-IDF` `mbedTLS` `OpenSSL` `SQLite` `Chart.js` `ESP32` ## 🛡️ What I Do - 🔍 Analyze network traffic and logs to detect anomalies - 🚨 Triage security alerts and identify indicators of compromise (IOCs) - 🧪 Build and experiment in a personal security home lab - 📖 Document HackTheBox solutions and security research publicly - 🛠️ Automate blue team workflows with Python and Bash scripts - 🔐 Design secure systems with real-world threat modelling ## 🧰 Tools & Stack **Security & Analysis**      **Programming**    **Platforms**   ## 🗂️ Other Projects ### 📁 [HTB Writeups](https://github.com/Srivanathisivakumar/htb-writeups) `Nmap` · `Gobuster` · `Metasploit` · `Manual exploitation` ### 🛠️ [Blue Team Scripts](https://github.com/Srivanathisivakumar/blue-team-scripts) | Script | Purpose | |---|---| | `log_parser.py` | Parse auth.log / syslog for suspicious events | | `port_scanner.py` | Lightweight TCP scanner with banner grabbing | | `ioc_checker.py` | Check IPs, domains, and hashes against threat intel | ### 📡 [Network Analysis Lab](https://github.com/Srivanathisivakumar/network-analysis-lab) Hands-on packet analysis of HTTP, DNS, FTP, ARP, and attack traffic including port scans and brute force attempts. ## 🎯 Currently Working On - [ ] Expanding HackTheBox machine writeups - [ ] Setting up a home SIEM lab with **ELK Stack** - [ ] Building a **phishing URL detector** using Python + VirusTotal API - [ ] Preparing for **CompTIA Security+** ## 💬 Let's Connect I'm a fresh cybersecurity graduate open to **SOC Analyst**, **Security Intern**, **Junior Analyst**, or any cybersecurity role where I can contribute and grow. Happy to collaborate on security projects and CTF teams too.