Security research, architectural decisions, and lessons from building and breaking things in production.
Lessons from building Marrow C2 — a full command-and-control platform with a PHP dashboard, Python agent, AMSI bypass, and anti-analysis evasion. Architecture decisions, detection engineering, and what building offensive infrastructure teaches you about defense.
How I designed the exam lockdown and state recovery system for EduAssess — browser lockdown, anti-cheating detection, crash recovery, and offline answer syncing across a multi-tenant architecture.
How DevOps Pilot turned a single Telegram message into a deployed 30+ screen mobile app — and what I learned about the line between AI-generated code and shipping a real product.
The architecture behind RootVector — an enterprise offensive security platform built on the -it module ecosystem. How Pentit (automated pentesting) and Mapit (attack surface management) connect through an AI-driven OODA loop to create a full red team pipeline.
