Portfolio – Ntsika Xhali Portfolio

File Sentinel

File Integrity Management System

Python Flask

File Sentinel

File Integrity Monitoring (FIM) System

A portfolio-ready File Integrity Monitoring (FIM) application built with a Python Flask backend and a modern web frontend (JavaScript, HTML5, CSS3). The system demonstrates core cybersecurity detection concepts and SOC-aligned monitoring practices.

What the system does:
Continuously monitors files and directories for unauthorized changes by comparing live file states against SHA-256 integrity baselines, generating alerts when violations occur.

What it protects:
Protects critical system, application, and configuration files from unauthorized modification, deletion, or insertion, supporting the Integrity pillar of the CIA Triad.

How it defends:

SHA-256 baseline hashing and integrity verification
Detection of file additions, deletions, and modifications
Alerting and structured logging for investigation
Secure authentication and session management
SOC-ready logs designed for SIEM integration

Threats & attacks detected:

Malware persistence and post-exploitation activity
Web shells and backdoor scripts
Malicious configuration changes
Log tampering and ransomware-related file changes

SOC use case:
Used to monitor high-value directories, trigger integrity alerts, and feed events into a SIEM for correlation with authentication, network, and endpoint data—enabling analysts to identify compromised hosts and escalate incidents.

https://github.com/NtsikaTech/Integrity-Monitoring-FIM-system

SentinelLite

Security Information and Event Management

Python, Flask, JavaScript, TypeScript, React, Vite, REST APIs, JSON, Tailwind CSS

^{SentinelLite SIEM}

Security Information and Event Management.

A professional, portfolio-ready log-based intrusion detection and monitoring system built with Python, Flask, TypeScript, and React. This application is designed to demonstrate core cybersecurity principles, SOC-style thinking, and full-stack development skills to potential employers. It provides a clean, intuitive dashboard for monitoring and analyzing security events in real time.

What the system does:
The SIEM dashboard collects, processes, and visualizes security-related logs from various sources. It identifies suspicious activity and potential threats, prioritizes incidents based on severity, and enables SOC-style monitoring through an interactive interface.

What it protects:
The system is intended to protect IT infrastructure and user accounts by detecting unauthorized access, anomalous behavior, and policy violations. Examples include repeated failed login attempts, access outside normal hours, and abnormal request patterns.

How it defends:

Rule-based anomaly detection: Monitors logs for patterns indicative of intrusion attempts.
Real-time alerting: Notifies users of security events with prioritization (Low, Medium, High).
Detailed event inspection: Allows investigation of raw logs for forensic analysis.
Secure access: Implements authentication and session management to safeguard the dashboard itself.
Modular architecture: Designed for scalability, enabling integration with additional security tools and data sources.

Key Features:

Centralized security dashboard with live system statistics
Log analysis interface for reviewing authentication and access events
Detection and alerting of suspicious activity and potential intrusions
Severity-based alert management and prioritization
Detailed event inspection with raw log access
Secure authentication and session handling
Modular frontend architecture ready for backend scalability

https://github.com/NtsikaTech/SentinelLite

SecEngine

Security Misconfiguration detection Engine

Python, Flask, REST APIs, JWT Authentication, JSON, Rule-Based Security Analysis

SECENGINE

Security Misconfiguration Detection Engine

A professional, portfolio-ready cybersecurity application developed with Python and Flask, designed to demonstrate application security, secure backend engineering, and security automation skills to recruiters and hiring managers.

What the System Does:
SecEngine proactively detects security misconfigurations in application and cloud environments. By scanning configuration files and deployment settings, it identifies vulnerabilities that could be exploited if left unaddressed.

What It Defends:

Web and API backends against misconfiguration-based attacks
Cloud environments (e.g., AWS, Azure, GCP) against insecure settings
Authentication and access controls from improper exposure
Deployment pipelines against security flaws introduced during configuration

How It Defends:

Performs rule-based scanning of application and cloud configuration files to detect insecure settings.
Classifies findings with severity levels (Low / Medium / High) for actionable prioritization.
Provides clear remediation guidance for each detected misconfiguration.
Uses secure authentication and token-based access to protect sensitive operations.
Maintains scan history and audit logs to support compliance and review.
Follows API-first design and secure backend architecture to model real-world AppSec and DevSecOps practices.

Key Features:

Automated scanning of configuration files for common application and cloud misconfigurations
Rule-based detection engine with severity classification
Secure authentication and protected routes with token-based access
Detailed findings and remediation recommendations for security improvements
Audit-ready scan history tracking for compliance and reporting
Backend-driven, API-first architecture for scalable and secure operations

SecEngine is a showcase of practical cybersecurity skills, demonstrating how to proactively defend digital assets through automation, secure design, and risk-based configuration analysis.

https://github.com/NtsikaTech/SecEngine

NexusGO E-Commerce Storefront In Development

Shopify, Liquid, JavaScript, JSON

^{NexusGO E-Commerce Storefront}

A desktop- and mobile-friendly e-commerce storefront built on Shopify, designed to provide a modern and seamless online shopping experience. The store focuses on user-friendly navigation, clean design, and efficient inventory management. Products are being uploaded progressively as part of the store setup.

The storefront is currently in development, with inventory being added and layout optimisations underway. This work lays the foundation for future enhancements, including custom Shopify features, integrated analytics, and advanced e-commerce functionalities.

Key Features:

Clean, responsive design for desktop and mobile
Intuitive product navigation and categorisation
Product pages with descriptions, images, and pricing
Inventory management and product upload in progress
User-friendly shopping cart and checkout experience
Customisable Shopify templates to match brand identity
Foundation for future analytics and sales tracking

Tech Stack: Shopify, Liquid, HTML, CSS, JavaScript

https://go.nexusbyte.co.za/

Nexus-Ticketing System

Paused (Planned Resumption)

TypeScript, JavaScript, ReactJS, Next.js, Electron.js, Node.js, JSON

^{Nexus Order Management System}

A modern desktop-style ticketing application built using TypeScript, ReactJS, Next.js, and Electron. It is designed for small ICT teams to manage client support tickets in a lightweight and efficient way. The system features a clean graphical interface, organized ticket workflows, and local JSON-based data storage, making it ideal for offline or internal support environments.

Currently being enhanced with basic ticket reporting, allowing for insights such as total tickets, open vs closed counts, and issue categories. This will form the foundation for future data analytics capabilities.

Key Features:
-Clean, user-friendly GUI
-Add, view, update, and delete support tickets
-Auto-generated Ticket IDs
-Client details (name and surname) and urgency tracking
-Basic ticket reporting (e.g., total tickets, open vs. closed, common issue types)
-Local JSON file storage
-Desktop-native performance via Electron

Tech Stack: TypeScript, JavaScript, ReactJS, Next.js, Electron.js, Node.js, JSON

Visit Github

Nexus Order Management System

Paused (Planned Resumption)

Shopify, Liquid, JavaScript, JSON

^{NexusGO E-Commerce Storefront}

Key Features:

Clean, responsive design for desktop and mobile
Intuitive product navigation and categorisation
Product pages with descriptions, images, and pricing
Inventory management and product upload in progress
User-friendly shopping cart and checkout experience
Customisable Shopify templates to match brand identity
Foundation for future analytics and sales tracking

Tech Stack: Shopify, Liquid, HTML, CSS, JavaScript

https://go.nexusbyte.co.za/

CYBERSHIELD

Password Strength and Entropy Analyzer

TypeScript, JavaScript, ReactJS, Next.js, Electron.js, Node.js, JSON

^CYBERSHIELD

Password Strength & Entropy Analyzer

A professional, portfolio-ready security-focused dashboard application built with TypeScript, ReactJS, Next.js, and Electron. The system is designed to analyze and evaluate password security, providing users and organizations with actionable insights into password strength, entropy, and vulnerability risk.

What the system does:

Evaluates passwords based on entropy calculations and complexity rules.
Provides real-time feedback on password strength and potential weaknesses.
Logs historical password assessments for trend tracking and security auditing.
Offers a clean, interactive dashboard for monitoring multiple password evaluations.

What it defends:

Protects user accounts and sensitive systems by identifying weak or predictable passwords.
Helps organizations implement stronger password policies and reduce the risk of unauthorized access.

How it defends:

Uses entropy-based analysis to quantify password unpredictability and resistance to brute-force attacks.
Displays visual indicators for immediate recognition of weak, medium, and strong passwords.
Tracks historical assessments to highlight recurring security gaps and inform proactive defenses.

Key Features:

Intuitive GUI: User-friendly interface for monitoring and managing password evaluations.
Status panels: Real-time visual indicators of password security levels.
Historical logging: Stores and displays past analysis for auditing and improvement tracking.
Modular design: Scalable components for maintainability and future feature expansion.
Responsive desktop interface: Electron-powered cross-platform support.
Simulated real-world scenarios: Static mock data to demonstrate system capabilities.

This application demonstrates full-stack cybersecurity awareness, blending secure application design with modern front-end and back-end integration, making it ideal for a professional portfolio targeting security and development roles.

https://github.com/NtsikaTech/CyberShield.git

Jona Auto

Complete

Static Website (SitePad, HTML/CSS)

^{Jona Auto Website}

A clean and responsive static website developed for a local car dealership, aimed at boosting their online presence and client engagement. The site features vehicle listings, contact forms, and service info — all crafted using SitePad with custom HTML and CSS enhancements for a polished, user-friendly experience.

Subtopic: Static Website (SitePad, HTML/CSS)

Visit Jona Auto

Nova .

Practice Project (Learning Purpose)

Sitepad

^{Nova .}

A vibrant and responsive WordPress website created as a practice project, designed to showcase events, restaurant specials, and lifestyle updates in a fun and engaging way. The site highlights upcoming happenings, buzzing restaurant deals, and community-driven content — all built with WordPress and customised using themes, plugins, and page builders for a modern, user-friendly experience.

Subtopic: Dynamic Website (Sitepad, Themes/Plugins, Page Builder)

https://sitepad.ntsikatech.co.za/