Background
Who I am
I'm a System Engineer and IAM (Identity & Access Management) Engineer. My work centers on designing and hardening infrastructure, identity systems, and access controls so that the right people and systems get the right access — and nothing more.
On the backend, I spend most of my time in Entra ID, Okta, AWS IAM, and custom IdP integrations — writing policies, auditing access, and building zero trust frameworks that actually hold up under pressure. I automate everything with Terraform, Python, and PowerShell because manual processes don't scale and they breed drift.
On iOS, I build tools like Autheris — a secure 2FA token manager that lives entirely on-device. The goal is to take the same security principles I apply to cloud infrastructure and make them practical in the palm of your hand. This site is where I showcase those projects and point to their dedicated pages. When I'm not building, I write about IAM hardening, authentication patterns, and threat intelligence on the blog.
Latest
Recent posts
Security research, technical deep-dives, and threat intelligence. View all posts →
ToddyCat's Umbrij Malware Abuses OAuth to Hijack Corporate Gmail
The ToddyCat APT has a new tool called Umbrij that hijacks Gmail sessions via OAuth abuse. It uses headless Chrome, remote debugging ports, and DLL side-loading to steal authorization codes and access corporate email via Google's API.
282 iOS AI Apps Are Handing Out Free API Keys to Anyone Watching
Researchers tested 444 AI chatbot apps for iPhone. 282 of them, nearly two-thirds, leaked paid AI access through network traffic. Some tokens were valid until the year 2125.
RustDuck Botnet Rebuilds in Rust to Hijack Routers and IoT for DDoS
A Rust-rewritten botnet is hijacking routers, IP cameras, and Android boxes for DDoS attacks. RustDuck uses CVE-2017-17215, CVE-2025-29635, and other old vulnerabilities that should have been patched years ago.