I just click buttonshas been my way to move forward through seemingly complex situations rather than overcomplicating them; it's my version of Dori's "just keep swimming", my HS wrestling coach's version of "just put on your pants one leg at a time" or whoever said "just put one foot in front of the other" (I think that was my drill sergeant)- hackIDLE is where I capture most of my digital garden of open notes and ideas related to all things security and tech
- cloud security audit/assessment tooling & automation
- container security
- ci/cd security, pipelines, supply chain stuffs
- AI red team tooling
| Platform | Description |
|---|---|
 hackIDLE Youtube |
tech/security videos, tooling walkthroughs, and demos |
 hackIDLE |
obsidian-powered notes, research, and living docs |
 killercoda |
interactive labs and scenarios I worked on |
 my medium |
occasional write-ups and blogs |
| hacks | archive of my old Jekyll blog (migrating into hackIDLE): |
| Platform | Description |
|---|---|
 my gitlab |
not much over there for now tbh |
 my huggingface |
currently working on fine-tuning some local LLMs |
 my google dev profile |
google dev profile |
| Project | Description |
|---|---|
| using Microsoft's MarkItDown library to convert PDFs, PPTs, and Word(docx) documents into markdown | |
 okta inspector |
okta multi-framework compliance audit tool (FedRAMP, DISA STIG, IRAP, ISMAP, SOC 2, PCI) |
| security auditing for AWS Bedrock with GenAI security checks | |
| prowler contributor | added new IAM checks for AWS security assessment; FedRAMP 20x Configurations (pending) |
| Training | Description |
|---|---|
 istio + FedRAMP scenario lab |
guided lab: walkthrough of Istio for a FedRAMP-like env |
| Project | Description |
|---|---|
 learntocloud.guide- phase 5: cloud security fundamentals |
cloud security fundamentals for junior cloud engineers (but also for budding cloudsec engineers) |
 GoogSec - google product security |
a resource for google product related security concerns - mostly GCP related now |
