// available for projects

I build tools that
actually work.

penetration testing, CLI utilities and security tooling.

tools shipped

blog posts

ctfs finished

// featured projects

clifmt

❯ clifmt --color --lang go main.go

package main

import "fmt"

func main() {

fmt.Println("hello")

}

Streaming syntax formatter for CLI output. Colorize, filter, and reshape terminal output from any …

Go Cli Parser Syntax

asciinema · 2:31

portscanner

Async port scanner with service detection, banner grabbing, and structured JSON output. Built in …

Rust Async Networking Security

wasm — playable in browser

hexbreak

Breakout clone built in Zig + WASM with a hex-editor aesthetic. Runs in the browser.

Zig Wasm Game Canvas

// latest transmissions

2025-11-03 Security Writeup Cloud Aws
Exploiting SSRF in a modern cloud environment
Chaining SSRF with a metadata service misconfiguration to exfiltrate IAM credentials during a pentest.
2 min read
2025-10-21 Go Tooling Devlog Cli
Building a zero-dep CLI arg parser in Go
Design of a minimal, composable argument parser — no cobra, no viper, no surprises.
2 min read
2025-09-14 Ctf Reverse-Engineering Writeup Htb
HTB — reversing a custom VM in 3 hours
Full breakdown of the 'VM-ware' HackTheBox challenge: opcode table, emulator, exploit chain.
2 min read
2025-08-30 Zig C Tooling Devlog
Why I ported my TUI tools from C to Zig
Comptime, build ergonomics, and no hidden allocations. The migration that was actually worth it.
2 min read

I build tools thatactually work.