### Stack Here:

Backend-heavy

* Node.js
* Express
* Custom middleware
* Security experiments

Database

* MongoDB / PostgreSQL

Advanced tools

* Docker
* Redis (later)
* Nginx configs
* Reverse proxy experiments

Possible content:

* XSS demo + mitigation
* JWT attack simulation
* Rate limit bypass test
* Secure headers comparison
* Secure file upload demo