Washington DC-Baltimore Area
* Active DoD Top Secret Clearance * Author of the world's most popular and comprehensive Reverse Engineering FREE self-study tutorial covering x86, x64, 32-bit/64-bit ARM, 8-bit AVR and 32-bit RISC-V architectures. #1 and #2 ranking Google search results for "reverse engineering tutorial" and the #1 ranking GitHub search results for "reverse engineering". * Author of the Hacking Windows, Hacking Go, Hacking Rust, Embedded Assembler, Embedded Hacking and Hacking Bits FREE self-study tutorials. * Developer of The Ouroboros Engine, a bare-metal cryptographic authentication framework written in pure Assembler for the AVR, ARM and RISC-V architectures. * Developer of Embedded Wasm, a collection of repos that runs a WebAssembly Component Model runtime (wasmtime + Pulley interpreter) directly on bare-metal w/ HW capabilities exposed through WIT. * Developer of PixelProof, which detects fake, AI-generated, and Photoshopped images in seconds. * Developer of Fusion Oncology that fuses XGBoost drug-sensitivity models with DNABERT-2 genomic embeddings, then routes predictions through digital twin simulation, PK/PD pharmacokinetics, GNN scoring, and Bayesian uncertainty to produce confidence-scored companion diagnostic reports. * Developer of Local MCP Client, a cross-platform web and API interface for interacting with configurable MCP servers using natural language, powered by Ollama and any local LLM of choice, enabling structured tool execution and dynamic agent behavior. * Developer of MalwareBazaar_MCP, an AI-driven MCP server that autonomously interfaces with MalwareBazaar, delivering real-time threat intel and sample metadata for authorized cybersecurity research workflows. * Developer of turbo-scanner, an open-source port scanner and service detection tool that uses 1000 go-routines at once to scan any hosts IP or FQDN with the purpose of testing networks to ensure there are no malicious services running. * Developer of turbo-attack, a turbo traffic generator pen-testing tool to generate random traffic with random MAC and IP addresses. * Author of the Python For Kids FREE self-study tutorial introducing the next generation of developers to the world of Python and MicroPython for microcontrollers.
I spearhead the deep technical analysis and reverse engineering of highly obfuscated, polymorphic ransomware while serving as the highest escalation tier for critical Windows kernel and user-land customer defects. Utilizing an arsenal of disassemblers and decompilers—including Ghidra, IDA Pro, and Binary Ninja—I perform exhaustive static and dynamic analysis on zero-day malicious binaries. I routinely defeat complex anti-analysis and anti-debugging mechanisms, bypassing custom packers, unrolling sophisticated XOR obfuscation layers, and reconstructing corrupted PE/COFF structures to extract core ransomware logic, cryptographic algorithms, and embedded payloads. In parallel with offensive threat research, I conduct rigorous root-cause analysis of complex, system-level customer incidents across both Ring 0 and Ring 3 environments. Leveraging WinDbg and live kernel debugging sessions, I dissect full memory dumps to trace adversarial execution flows through undocumented Windows APIs, resolve elusive deadlocks, and identify obscure driver-level conflicts and IOCTL abuses affecting our enterprise deployments. To systematically scale our defensive capabilities, I map extracted malware behaviors and execution paths directly to the MITRE ATT&CK framework, translating raw assembly instructions and kernel-level insights into high-fidelity behavioral telemetry. I engineer custom headless automation scripts and IDAPython/Ghidra plugins using Python and Rust, accelerating the malware triage pipeline and enabling near-native execution speeds for our telemetry correlation. By fusing deep-dive binary deconstruction with OS-level defect resolution, I ensure our dynamic deflection systems and behavioral architectures proactively neutralize edge-case evasions at the deepest layers of the operating system.
Director of Test Automation at Corsha which provides the first and only MFA for purely machine-to-machine API connections when no human user is involved. Lead a team of Software Engineers in Test and designing and architecting a comprehensive Test Integration Framework in Python (Ansible) for back-end integration testing and a comprehensive Test Integration Framework in Python (Selenium) for front-end integration testing within an API Security Platform that provides automated, dynamic multi-factor authentication (MFA) for APIs. Day-to-day responsibilities include developing and engineering with Ansible for server test automation and Selenium for UI test automation within software development agile teams to ensure software is designed and implemented for testability. Architect solutions to do session level, functional, technical, failover and performance testing across the entire stack including application, cloud, OS and network. Review code base to recommend testing scenarios; analyze changes and assess the testing required. Perform analysis of data from QA and production to build testing tools and scenarios. Maintain testing and analysis tools; identify any negative changes to both QA and production environments and work with teams to resolve those concerns. Work with GCP as a cloud solution and Kubernetes for container orchestration, Jira for agile ticketing and GitHub for version control. Work with Grafana, Loki, Tempo and Prometheus for data ingestion, enrichment, storage, analysis, and visualization and debugging of the CI/CD, continuous integration and continuous delivery pipeline and infrastructure utilizing Kubernetes K8S within an Istio Service Mesh. Work with Jira, develop and maintain a comprehensive Test Automation Roadmap and Dashboard measuring current and past performance to ensure timely goals are set and maintained by providing a single pane of glass into the Test Automation coverage.
Automation Engineer and architect of a custom Ansible Test Integration Framework to test and deploy offline update data bundles for classified air-gapped networks. Day-to-day responsibilities include developing and engineering primarily with Ansible for server test automation and Selenium for UI test automation within software development agile teams to ensure software is designed and implemented for testability. Develop and engineer automated system frameworks in Ansible and Selenium and write tests to ensure code quality and detect regressions early in the development cycle. Responsible for accurate test execution documentation and maintain the integration and end-to-end test frameworks used by multiple development teams. Work with AWS as a cloud solution, Oracle8 and RHEL (Red Hat Enterprise Linux) operating systems, Docker for containerization, Kubernetes for container orchestration, Jira for agile ticketing and GitHub & Bitbucket for version control.
Senior Test Engineer and developer of a custom JavaScript-based test engineering suite designed to integrate with a C++ engine for High Fidelity, a Virtual Reality company. Responsible for building and optimizing automated test frameworks to validate functionality, performance, and stability of VR applications. Developed and maintained a JavaScript testing framework that interfaced with the C++ VR engine, enabling automated execution of integration and regression tests. Utilized SQL databases to manage test data and Pandas (Python) for analyzing test results and identifying failure patterns. Worked closely with C++ developers to create test hooks and improve debugging capabilities. Enhanced interoperability between JavaScript-based test scripts and the C++ engine to streamline validation workflows and accelerate release cycles. Contributed to overall system quality by implementing efficient automated test solutions, reducing manual QA time by 40%, and improving issue detection through data-driven test analysis.