I'm Gabriel, founder of AtendIA Tec. I build custom AI-powered systems tailored to each client's business — from voice agents that handle real phone conversations on WhatsApp to full CRM platforms with 130+ features. I also pentest what I build (and what others build) before it ships.
Not a SaaS company. Every project is architected from scratch around the client's workflow, integrations, and goals. Reusable foundations, fully personalized delivery.
| Area | Details |
|---|---|
| Voice AI Systems | Custom agents that call, qualify, and schedule via WhatsApp — Deepgram STT, Claude/GPT, ElevenLabs TTS, SIP bridging via Jambonz |
| Custom Platforms | Full-stack web apps built to order — CRM, dashboards, automation engines, real-time features, multi-tenant architecture |
| WhatsApp Automation | Meta Cloud API integration, inbound/outbound messaging, webhook handlers, media support |
| CRM & Integrations | GoHighLevel, Clinicorp — OAuth flows, bidirectional sync, embeddable widgets, calendar booking |
| Application Security | Web/API pentesting (OWASP/PTES), GraphQL, auth bypass, IDOR, multi-tenant isolation audits |
| Infrastructure | Docker Compose + Traefik, automated staging/production, health monitoring, auto-rollback |
| 650+ commits |
267 source files |
353 automated tests |
17 backend modules |
| 21 database tables |
130+ features shipped |
55 API endpoints |
16 webhook event types |
| Phase | What happens |
|---|---|
| Discover | Understand the client's business, map requirements, research integrations |
| Architect | Design spec + implementation plan, reviewed before any code is written |
| Build | TDD, code review, quality audit at every stage. Nothing ships unchecked. |
| Secure | Pentest my own systems before delivery — OWASP methodology, API audits |
| Deploy | Staging with automated tests, production with smoke tests + auto-rollback |
| Iterate | Monitor, fix, improve. Continuous delivery through staging pipeline. |
Penetration testing and security audits following OWASP Testing Guide v4.2 + PTES methodology. Focused on web apps, REST/GraphQL APIs, authentication systems, and multi-tenant isolation.
Active on YesWeHack bug bounty platform.
| Repository | What it does |
|---|---|
| fastify-multi-tenant-starter | Multi-tenant backend template — Fastify 5 + Drizzle ORM + JWT + row-level isolation |
| pentest-samples | Sanitized pentest case studies — OWASP/PTES, GraphQL/Firebase/REST API findings |
| whatsapp-meta-webhook-template | Meta WhatsApp Cloud API webhook handler — Fastify + TypeScript + HMAC validation |
| bullmq-job-patterns | BullMQ production patterns — retry, sweeps, webhook delivery, rate limiting |
| docker-traefik-ssl-template | Docker Compose + Traefik v3 + SSL — reverse proxy with security headers |
Need a custom system built for your business?
Voice AI, WhatsApp automation, custom platforms, or security audits — every project is tailored to your workflow.
"Build it right. Then try to break it. Ship only what survives."