About

Systems programmer and security engineer. I build tools in Rust — an offensive security toolchain, the server you're reading this on, and production software for real clients. I came to web security from C and x86 assembly, which shapes how I think about trust boundaries and failure modes. Based in Portland, OR.

Currently building

• GeistScope — Automated offensive security toolchain in async Rust. Recon, crawling, fuzzing, AI-ranked attack surface analysis, and a Ratatui terminal dashboard. Eleven binaries covering the full recon-to-verification pipeline.
• mg-server — This site. Axum routing, Askama compile-time templates, flat-file Markdown blog, security headers middleware. Deployed behind Caddy and Cloudflare with no open inbound ports.

Technical range

• Languages: Rust, C (reading and auditing), Python
• Security: Subdomain enumeration, port scanning, web crawling, payload fuzzing, finding verification, passive posture analysis, security headers, CORS policy, rate limiting
• Infrastructure: Proxmox, Ubuntu VMs, Caddy, Cloudflare Tunnel, systemd, cargo-audit, cargo-geiger

Approach

Building the tools first, then using them. Every binary in GeistScope does real work — the gaps show up in the implementation, not in a list of planned features. Writing about what I learn on the blog.