Kamran K
I am a Senior Cybersecurity Engineer with a strong background in designing and implementing robust security solutions to safeguard critical systems and data. With a track record of spearheading innovative projects at renowned tech companies like Salesforce, Google, and Microsoft, I bring expertise in areas such as cryptographic implementations, network security, identity and access management, and multi-factor authentication. I am a passionate researcher dedicated to uncovering the intricacies of cryptographic vulnerabilities and exploits. Currently working on a peer reviewed publication on Hacking Cryptography. As a proven leader and innovator, I am dedicated to ensuring the security and resilience of organizations in the ever-evolving realm of cybersecurity.
$90
Hourly Rate
8+
Jobs Done
3+
Rehires
90%
Security Protocol Development
90%
Cybersecurity Architecture
90%
Cryptographic Implementations
90%
Secure Software Development
My Skills
My Portfolio
Electron Ballet
Founded ElectronBallot (electronballot.com); a startup aimed at delivering ultra low-cost cryptographically verifiable digital elections in Pakistan
Author, Hacking Cryptography (2024, Manning Publications)
As an author, I am engaged in writing a deep-dive technical book on cryptographic implementations and exploits. This includes a comprehensive examination of vulnerabilities such as RC4 exploits in WEP and DUAL_EC_DRBG. Seven chapters from this book have already been published as part of Manning's Early Access Program, with a planned total of nine. My work has been well-received, garnering a 4.3-star rating in early access peer reviews.
Traffic analyzer for differentiating BitTorrent handshake failures from port scans
This project aims to improve the accuracy of port-scan detectors by analyzing the traffic of BitTorrent hosts and differentiating their respective BitTorrent connection (attempts) from port-scans. It is shown that by looking at BitTorrent coordination traffic and modeling port-scanning behavior the number of BitTorrent-related false positives can be reduced by 80% without any loss of IDS accuracy.
My Experience
Software Engineering Architect
Salesforce
2021 - PRESENT
Led development of phishing-resistant MFA services for production access. Led development of a modern TACACS+ server in Rust; migrated authentication & authorization of all network devices in Salesforce datacenters without any incident, serving 1.2 billion requests per day across 32 sites.
$90
Hourly Rate
8+
Jobs Done
3+
Rehires
90%
Security Protocol Development
90%
Cybersecurity Architecture
90%
Cryptographic Implementations
90%
Secure Software Development