Security tools, research, and hands-on projects across offensive and defensive security.
A Python scanner I built with a friend that does port scanning, service detection, and automated CVE lookups from the National Vulnerability Database.
An authentication system I built from scratch with WebAuthn, MFA, rate limiting, and isolated IDS logging. Demonstrates how real auth security works under the hood.
I set up GoPhish and ran a phishing simulation against my own email to understand how social engineering attacks work and how to defend against them.
I reverse engineered a commercial cheat-as-a-service operation from purchase to kernel execution. Ten kill chain stages, full infrastructure mapping, and coordinated disclosure to the affected vendor.