Hi My name is Thembaletu.

< img align='right' src='https://visitor-badge.laobi.icu/badge?page_id=KhodingNow.KhodingNow' />

A quantitative Finance Option pricing-engine built in #Rust - Black Scholes known variables, property testing: https://github.com/KhodingNow/A-RustOption-Trading_Engine-blackScholes-

I am a Rust Developer, currently writing TWO big projects to deepen my knowledge of Rust and validate my teaching of the language at TEACHERS GUILD I just joined to teach software and programming. This will be useful to my API Security / Rust Developer consultancy in JHB, SAfrica.

These projects are:

• Command Line Rust - writing small programs (Command Line Rust - by Ken Y-Clark),
• Writing Rust C FFIs - picking up expert Skills form Refactoring to Rust (by L Mara and J Holmes). The irony here is, though I started learning Rust 2,5 years ago - the first Software Book provides me with plumbing skills to conquer the second goal to Refactor in Rust - that is how these two projects build on and coplement each other at a system engineering level.

In the main - I consult in Ethical Hacking on GraphQL, Rest API Security, conducting Pentesting on Vulnerable APIs implemented in various programming languages servers.I have been programming in Python since 2020.

In February of 2025, at Microsoft Community, I became a member of a Rust Programming UserGroup - I started experimenting with Rust's serde library (for API Security - titled: Hacking LLMapp_AI_agents - exploring what kind of safety does Rust offer)

I have a combined 20+ year experience across Corporate_SA including 8 years of running my own Real Estate Franchise in Midrand and Waterfall City - north of JHB.In my spare time, I Coach Mathematical Mindsets to students. I include Programming as a problem solving tool.

Mathematics is so embedded in Software engineering. This certainly helps me handle AI with confidence built on knowledge - RAG in Machine Learning (aka AI). The majority of developers have a huge knowledge gap regarding how AI Security actually works at the core - Vector databases, RAG. I continually talk at Tech talks in JHB dev environments about the (ANATOMY of af an LLM attack) for writing secure software.

On Linkedin, I post a lot of Programming ideas, API security concepts <a href= "https://www.linkedin.com/in/thembaletu-mbangcolo-b993a325a/

Currently I am sharing ideas on Kubernetes, Pods, Clusters, Networking, Security as well as How to write secure Software with developers in mind to mitigate quite early, any API security vulnerabilities that might crip-in during the API code development stage.

ALSO:

• I am exploring API OFFENSIVE Security using Rust Programming language -> Here is a taste of just two DATA structures in Rust (String and &str) https://github.com/KhodingNow/Exploring-Rust_String_str_deeply

I ethically conduct Software development experiments as well as Hack,Pentest, Red / Blue Team APi security especially GraphQL APIs for the last number of years on my my Home Kali Linux lab environment. A heavy Linux user, in Programming, Security, Docker, Kubernetes, Git version control, Git Action automation, etc. I do take Rust to Cyber Security as I often attend 0xCon and 0xCoffee meetups in JHB - I have had a few talks here, exploring various ways Rust brings safety to severs, databases and Cyber Sec in general.

How Black Hat Scripting can be optimized as a Management tool with AWK, grep, etc - this is what you take to your next EXCO Meeting for secure systems - servers on prem and Cloud.

• https://github.com/KhodingNow/the-magic-of-black-hat-bash-scripting-in-API-Security.
• Above I present a number of automated bash script to navigate a server log file that contains HTTP requests activity - use AWK and grep to generate various reports including sucpicious activity report, what IP addresses contact the server, which ones fail/succceed/ frequently fail, etc
• Time based analysis
• User Agent analysis
• Data extraction with AWK.

• Realtime monitoring

• Parsing Script that ;

  • track errors
  • count request methods
  • track data by IP
  • track by hour, etc

  NB: the next thing I am doing is => how to move from Bash to production Rust -I will intergrate the magic of a Bash security Script to Production Rust for safety, speed, and less resources (I will enter this for a Rust Hackathon Africa currently on from 3-18 Jan 2026).

Tech Conferences and techMeets where I was a speaker:

• PyconAfrica 2025 - 39 speakers, 14 Countries from Africa including England, US, Canada, India.
• Microsoft Community every second Tuesday of the month (Rust only to a Rust UserGroup)
• 0xCoffee - last Monday of month - spoken her three times in 2025 - Cyber Sec Professionals
• Developer User Group JHB at BBD JHB - spoke there about API Security, Rust, etc a few times in 2025.
• Google Gauteng Developer hosted at BBD Rosebank
• JoziJS at BBD JHB - spoke once so far in 2025 - Rust and Fearless Concurrency - one memorable talk as far as audience engagement was concerned.

1. <a href= " https://github.com/KhodingNow/pythonProject8.git " - this is a Data Structure programming project using Python.
2. <a href= " https://github.com/KhodingNow/FrontEndDev.git " - A frontEnd Dev site build with HTML and CSS mainly.
3. <a href="https://github.com/KhodingNow/FigmaToHTML.git " - This is a FrontEnd Dev project, converting FIGMA to HTML, using CSS, a little JS too.
4. <a href=" https://github.com/KhodingNow/Malware_Analysis.git " - This is a Malware Analysis code written in Python to protect servers and increase security awareness for Devs, SystAdmins.

How does Problem Solving - Mathematical_THINKING - Growth_Mindset for productivity gains at work look like for Managers? . I share my views making connections with Mathematical thinking as a skill and a competence in this short video. Let us quickly remind ourselves - in Programming, the OOP pattern in Java, Python, C++ etc is anchored in a branch of Mathematics called Category Theory. So OOP and Category Theory provide a real life mathematical foundation / justification for each other. Look at how Java for example is popular in enterprize business.

• <a href= " https://youtu.be/DAw0fP27wH8?si=ZIRm43bnIHLAGPUF"

• <a href="https://www.linkedin.com/posts/thembaletu-mbangcolo-b993a325a_how-to-help-students-learn-mathematics-better-activity-7108687316902129664-Axej?utm_source=share&utm_medium=member_desktop " - This is an interview I did on Radio 702 about STEM, Growth Mindsets -Mathematical mindests learning , teaching.

In April 2024, I discovered an API vulnerability on a Cloud Based API for a Retail Client's Job website - I wrote a report, informed them and they email to acknowledge it.

<img src=" Pictures\Screenshots\Screenshot 2024-07-04 102831.png" </>

🌍  I'm based in Johannesburg* ✉️ 

You can contact me at khodingtata@gmail.com* 🧠  I Execute DoS attacks, fingerprinting Rest and GraphQL vulnerabilities on GraphQL implementing servers, mitigate these attacks. Show HOW you can avoid them in the first place*

🤝  I'm open to collaborating on API and writing secure code projects

I embark on Front End Development, with the idea of getting into the mindset of a developer when thay make APIs, my sole interest is to build, break APIs, so I can fortify them against bad actors.

Tools and Skills

My GitHub Stats

Top Repositories