About Me

Audit-ready security analytics on encrypted telemetry with hardware-backed isolation, attestation-gated keys, and immutable query logs. Alpha demo ready.

Cognitive Light Cone–aware security agents: C-Lcone assays, misaligned “Malignant” agents, Goal-Aware Orchestration (GAO), and enclave-ready AWS/OCI IL6-style infrastructure inspired by Michael Lev…

A dangerously functional collection of experiments. This repository exists at the intersection of “I wonder if this works” and “oh no, it worked”. Expect questionable Terraform, overly caffeinated …

A Terraform module that strictly adheres to the laws of physics while rotating your YubiKey credentials across AWS and OCI. Lefty-loosey functionality coming in v2.

The "touch-to-deploy" YubiKey workflow for paranoid infrastructure.

The hands-on approach to hands-off infrastructure key management. Touch the key, watch the rotation go.

Summoning ephemeral keys from the enclave void. You need a quorum of friends to make it work.

Encryption key rotation so frequent your datastores might need Dramamine. A multi-cloud vault manager that never stops spinning.

Zero-touch employee onboarding. Well, technically one-touch. Automated New Hire Enrollment ->YubiKey → Vault → Kubernetes pipeline.

Knock knock! Who's there? Authorized User. Authorized User who? Authorized User with a signed JWT and a Yubikey, that's who.

A Terraform-driven API gateway that plays hard to get—literally. Requires physical YubiKey interaction for access.

Automated provisioning of secure infrastructure with YubiKey PIV-enforced SSH authentication.

Demonstration of passwordless, hardware-authenticated database credential bootstrapping with HashiCorp Vault and response wrapping.

Hardware-root-of-trust encryption for Terraform state using YubiKey and Vault with automated key rotation.

A Zero Trust API key minter for when you don't even trust yourself. Features MPC, YubiKeys, and a healthy dose of paranoia.

Ensures infrastructure integrity by binding OCI Function execution to specific, hardware-signed Terraform plans through cryptographic verification.

Supply-chain security for AI fine-tuning. This repo generates zk-SNARK proofs per gradient step, binds proving keys to TEEs, prevents rollback, and publishes audit artifacts for public replay

Mimir: Collaborative LLM inference where secrets stay secret. Combines Multiparty Computation (MPC) and Trusted Execution Environments (TEEs) to run autoregressive models across mutually distrustfu…

Podcast episodes from the Zero Noise Collective

Rapidly prototyped website for a friend

Essential playbooks & runbooks for cybersecurity operations. A dynamic resource for security pros to navigate digital threats, with best practices, incident management protocols, and community-driv…

A simple walkthrough for those who wish to take their kubernetes knowledge to the next level by creating and deploying a hardened, simple kubernetes infrastructure

A curated list of tools for incident response