Projects & Writeups
The work, written up.
Hands-on security work across offensive security, agentic AI, and infrastructure — each with the full playbook or the code behind it. When I work something out, I document it.
Agentic AI
Building AI systems security-first — persistent assistants, agentic DevSecOps, and guardrails, from real multi-instance deployments.
Read the writeup → WriteupOffensive Security
Adversarial security against real environments — pentest, red team, purple team — with the full attack chain documented.
Read the writeup → WriteupAudits
Hands-on security and compliance reads — NIST CSF, HIPAA, SOC 2 prep — with prioritized, plain-English findings.
Read the writeup → Writeup + CodeManual Red Team Infrastructure
A playbook for the administrative and technical logistics of standing up red team infrastructure by hand.
Read the writeup → Writeup + CodeAutomating Red Team Infrastructure
Building the same red team infrastructure with Terraform — the automated companion to the manual playbook.
Read the writeup → CodeAgentic AI Assistant (GIR)
The persistent, multi-instance AI assistant framework behind the fleet — source on GitHub.
View on GitHub → CodeAgentic AI Security Guardrails
The guardrail and hardening layer for agentic AI — action tiers, hooks, and approval gates — on GitHub.
View on GitHub →More on the blog
Step-by-step guides and lessons from real work — the ongoing writeups live on the blog.
Read the writeups