Skip to content
View supun2001's full-sized avatar
😎
Open to work
😎
Open to work
4 followers · 4 following

Achievements

Achievement: Pull Shark

Achievements

Achievement: Pull Shark

Highlights

  • Pro

Block or report supun2001

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
supun2001/README.md

πŸ‘‹ Hi, I’m Supun Hasanka

πŸ§‘β€πŸ’» About Me

I’m Supun Hasanka, a Java Full-Stack Engineer with a strong foundation in software engineering and a growing specialization in cybersecurity-aware system design.

I hold a BSc (Hons) in Software Engineering (2:1) and am currently pursuing an MSc in Cybersecurity at the University of the West of Scotland (UWS).
My focus is on building scalable, high-performance applications while applying secure-by-design principles, risk awareness, and good engineering discipline - particularly relevant in regulated and mission-critical environments.

πŸš€ What I’m Currently Working On

πŸ’» Software Engineering (Primary Focus)

  • Building Java & Spring Boot backend services with RESTful APIs
  • Developing full-stack applications using React
  • Applying microservices principles, clean architecture, and design patterns
  • Implementing secure authentication & RBAC
  • Writing unit/integration tests and working in Agile/Scrum teams
  • Exploring CI/CD, Docker, and system monitoring concepts

πŸ” Cybersecurity (Supporting Strength)

  • Completing an MSc in Cybersecurity (2025–2026)
  • Applying secure coding, threat-aware design, and risk controls to applications
  • Hands-on exposure to penetration testing, incident response, and SIEM concepts
  • Understanding GRC, security law, and compliance requirements
  • Learning how security integrates with software delivery and operations

πŸ› οΈ Technologies & Skills

β˜• Backend & Full-Stack Development

  • Java, Spring Boot, REST APIs
  • Microservices concepts
  • SQL & NoSQL (MongoDB)
  • Authentication & Role-Based Access Control (RBAC)
  • Performance optimisation & concurrency concepts

🌐 Frontend

  • React.js
  • JavaScript, HTML, CSS
  • API-driven UI development

πŸ§ͺ Testing & Quality

  • JUnit, Jest
  • Test-Driven Development (TDD)
  • Code reviews & refactoring
  • Agile / Scrum workflows

βš™οΈ DevOps & Systems (Foundational)

  • Git & GitHub
  • CI/CD (GitLab)
  • Docker (basic)
  • High-availability & monitoring concepts

πŸ” Security & Risk Awareness

  • Secure coding practices
  • Applied cryptography fundamentals
  • Penetration testing concepts
  • Incident response awareness
  • Governance, Risk & Compliance (GRC)

All work is ethical, legal, and permission-based.

πŸ“« Get in Touch

Software engineer by discipline, security-aware by design. Always learning and improving.

Pinned Loading

  1. pen-testing pen-testing Public

    A collection of ethical penetration testing automation scripts for OAuth/Auth0 testing, security header analysis, JWT token inspection, and web application misconfiguration detection.

    Python

  2. ai-log-Analyzer ai-log-Analyzer Public

    An AI-powered security log analysis tool that ingests Wazuh JSON alerts and automatically detects suspicious activity. The system explains what happened, why it matters, and provides clear remediat…

    JavaScript

  3. sumarly sumarly Public

    A smart summarization tool that automatically generates concise summaries from large text sources, improving reading efficiency and content comprehension.

    JavaScript

  4. ai-admin ai-admin Public

    A suite of AI-powered administrative tools that automate email management and phone interactions using cutting-edge Generative AI models.

    Python