Backend engineer and IT undergrad (B.E IT) . I build systems that sit at the intersection of backend infrastructure, Web3, and AI — things that are useful to run in production, not just impressive in a demo.
Currently contributing to GreedyBear under The Honeynet Project. GSoC 2026 applicant (Project #6 — Injection/Event Collector API).
apidrift-cli
CLI tool that snapshots API response shapes — field names and types, never actual data — and diffs them across versions, environments, or deploys. One command catches a userId: string → number before it silently breaks clients at 3am. CI-native: exits with code 1 on breaking changes, so it gates deploys without extra config. Published on npm.
CuraBlock
Web3 security wallet with an AI fraud detection model scanning 18 dimensions of wallet behavior, a quadratic voting DAO (voting power = √tokens staked, so whales can't dominate), and soulbound on-chain reputation stored as Base64-encoded JSON directly in the contract — no IPFS, no server dependency. The interesting design decision: getDAOScamBoost() feeds community-confirmed scam addresses back into the ML model's risk scoring, so the system improves with every vote. 8 production Solidity contracts on Monad Testnet. Full-stack: React + Go (Gin) + PostgreSQL + Python/scikit-learn.
CodeCrafter
Real-time collaborative code execution platform where multiple users can edit and run code simultaneously using CRDT-based synchronization and WebSocket communication. Code runs inside isolated Docker sandboxes with distributed RabbitMQ workers, Redis-backed session sync, and multi-language execution support (JS, Python, Java, C++, Go, Rust). Designed like “Google Docs for code” but with secure containerized execution, scalable worker orchestration, and production-style observability using Prometheus + Grafana.
FloodMesh
Disaster-resilient mesh messaging that routes over Bluetooth and Wi-Fi Direct when the internet is down. E2E encrypted, offline-first, deployed to Vercel (26 production deployments).
-Contributed to the open-source project GreedyBear with multiple merged pull requests focused on bug fixes, data extraction reliability, GeoIP enrichment, IOC merging logic, and testing improvements.
| PR | Contribution |
|---|---|
| #1217 | Fixed Cowrie timestamp parsing using parse_timestamp() to ensure proper session event extraction |
| #1178 | Fixed GeoIP enrichment bug by scanning all hits in iocs_from_hits() |
| #1010 | Added sorting guard in _update_days_seen to prevent corrupted days_seen ordering |
| #1005 | Added test coverage for ClusterCommandSequences.run() |
| #974 | Improved IOC merging logic using proper first_seen and last_seen semantics |
| #933 | Propagated firehol_categories correctly in _merge_iocs |
| #885 | Replaced regex-based IP validation with Python ipaddress standard library |
- 7 merged pull requests
- Contributions approved and merged by project maintainers
- Worked on cybersecurity-focused backend and enrichment pipelines
- Submitted a GSoC 2026 proposal for the Injection/Event Collector API (Project #6)
🔗 View all merged PRs:
https://github.com/intelowlproject/GreedyBear/pulls?q=is%3Apr+is%3Amerged+author%3Atanmayjoddar
Backend — Node.js · Python (Django · DRF · FastAPI) · Go (Gin) · PHP (Laravel)
Infra — Docker · Kubernetes · AWS · Redis · RabbitMQ · GitHub Actions · Nginx
Web3 — Solidity · OpenZeppelin · ethers.js · IPFS · Hardhat
DB — PostgreSQL · MongoDB · MySQL