$ whoami

Abolfazl Mesbah

Backend Developer | Bug Hunter

$ skills

C# / .NET CoreRESTful APIsSQL ServerGit & GitHubPythonBurp SuiteLinuxOWASP Top 10

System Architecture & Projects

Bonaktala Jewelry Marketplace

https://bonaktala.com

Engineered a high-performance, multi-vendor jewelry marketplace with JWT-based authentication, robust approval workflows, and advanced administrative controls.

Key Achievements:

  • Migrated a legacy .NET platform to .NET Core, boosting performance and maintainability
  • Built secure and scalable RESTful APIs for all backend operations
  • Developed an intuitive admin panel with CSHTML for improved user experience
  • Implemented advanced filtering, export, and reporting features for vendors, customers, and orders
  • Collaborated with frontend team using Vue.js for responsive customer interfaces
  • Designed a workflow where orders require manager and producer approvals before fulfillment
.NET CoreSQL ServerJWT AuthenticationGitREST APICSHTMLJavaScriptHTMLCSSSwaggerFlask Server

Devfolio

https://github.com/mesbah-dev/DevFolio

Designed a Open-Source and comprehensive RESTful backend API for portfolio websites, featuring clean architecture, JWT authentication, and full admin content management.

Key Achievements:

  • Developed a fully extensible and secure backend using C#/.NET Core and Entity Framework
  • Implemented JWT-based authentication for admin panel security
  • Designed database schema and relationships for scalability and maintainability
  • Provided full CRUD APIs for projects, skills, education, experience, and user profiles
  • Integrated Swagger for easy API exploration and developer usability
  • Performed security pentesting post-deployment to ensure API robustness
  • Open-source and ready for developers to extend or customize their own portfolios
.NET CoreC#Entity FrameworkSQL ServerJWT TokenSwaggerGitREST API

Kabir Motor - Financing & WebApp Management

https://kabirmotor.com/

Developed scalable backend solutions for one of Iran's largest motorcycle manufacturers, adding flexible purchasing, agency management, and dynamic forms functionality.

Key Achievements:

  • Implemented a flexible installment purchase system with credit checks through third-party and governmental services
  • Enhanced the agency section for effective dealer and sales representative management
  • Designed a dynamic form system allowing admins to create questions with various answer types (text, multiple-choice, etc.)
  • Responsible for full database design, entities, services, and backend APIs for all added features
  • Ensured security and optimal performance following Clean Architecture principles
.NET CoreC#SQL ServerREST APIJWT AuthenticationGitSwagger

Takashi - Admin Excel Import/Export

https://takashi.store/

Implemented robust Excel import/export functionality for managing products and categories in the admin panel, enhancing data handling efficiency.

Key Achievements:

  • Enabled bulk addition and update of products and categories via Excel files
  • Allowed exporting product data to Excel for reporting and inventory management
  • Designed secure and efficient backend services to handle large datasets
  • Optimized data processing to minimize server load and improve responsiveness
.NET CoreC#SQL ServerREST APIJWT AuthenticationGitSwaggerExcel Import/Export

GhostRonin - Subdomain Recon & Classifier

https://github.com/mesbah-dev/ghostronin

A Python-based reconnaissance tool for automating subdomain enumeration, filtering, status code categorization, and basic port scanning - ideal for bug bounty testing.

Key Achievements:

  • Implemented subdomain enumeration using subfinder, assetfinder, and crt.sh
  • Optional filtering of subdomains by a specific root domain
  • Alive host detection with httpx and categorization by HTTP status code
  • Organized outputs for better readability and further analysis
  • Fully command-line ready and easily executable from anywhere
PythonCommand-line ToolSubfinderAssetfinderhttpxMIT License

Impact & Achievements

System Performance

API & Backend

  • • Handled ~500k requests/day across multiple projects
  • • API response times improved ~60%
  • • JWT-based authentication implemented for secure access

Database Optimization

  • • Query response time improved by ~70%
  • • Implemented efficient indexing & caching strategies
  • • Reduced server load by ~40%

Development & Personal Impact

Code Quality & Architecture

  • • Designed clean, maintainable backend architecture
  • • Reduced technical debt by ~40%
  • • Enforced coding standards across projects

Project Learning & Achievements

  • • Completed 10+ full backend projects independently
  • • Implemented advanced features like Excel import/export and security testing
  • • Continuously improved skills in .NET Core, Python, and SQL

Education & Skills

Education

  • • B.Sc. in Computer Engineering (Software)
  • • Continuous learning in web & backend technologies

Technical Skills

  • • .NET Core, C#, Entity Framework
  • • SQL Server, REST APIs, JWT Authentication
  • • Python, Bash scripting, Command-line tools
  • • Excel Import/Export, Data Analysis
  • • Linux

$ contact --info

Let's Connect

$ location --current

Tehran, IR

$ contact --email

abolfazl.mesbah.dev@gmail.com

$ cat resume.pdf

Download Resume

$ ls ./social-links

GitHub

@mesbah-dev

LinkedIn

@mesbahdev

X

@mesbah_dev