What I'm Building Now
A snapshot of what I'm currently working on and thinking about. Inspired by Derek Sivers' now page movement.
Current Focus
Active projects and explorations
AI Security Tooling
Building security tools specifically for AI startups and ML platforms. The attack surface for AI systems is fundamentally different — model poisoning, prompt injection, data leakage through embeddings.
Exploring: automated prompt injection detection, ML model vulnerability scanning, and guardrails for LLM-powered applications.
Automated Cyber Insurance Risk Scoring
Researching how cyber insurance companies assess risk and exploring ways to automate technical risk scoring. The goal: real-time, data-driven assessments based on actual security posture.
Key areas: continuous attack surface monitoring, vulnerability intelligence aggregation, and breach probability modeling.
Dark Web Monitoring for Security Teams
Building tools to help security teams monitor for leaked credentials, exposed databases, and compromised systems on dark web forums and marketplaces.
Technical challenges: data collection from Tor hidden services, credential matching, and privacy-preserving alerting.
Enhanced Attack Surface Detection
Improving RiskProfiler's detection capabilities to discover shadow IT, forgotten test environments, and misconfigured cloud resources — assets organizations didn't know were exposed.
Focus: subdomain enumeration, cloud storage bucket discovery, API endpoint fuzzing, git repository exposure.
Learning & Exploring
- ›LLM Security — Securing applications built on large language models — prompt injection defenses and output validation.
- ›Rust for Systems Programming — Building high-performance security tools that require memory safety.
- ›Cloud Security Posture Management — Deep diving into CSPM tooling and identifying gaps in current solutions.
- ›Threat Intelligence Aggregation — Researching how to effectively aggregate and correlate threat intel from multiple sources.
Writing & Thinking About
- ›How serverless architecture changes security monitoring and incident response
- ›Why attack surface monitoring is still an unsolved problem for most organizations
- ›The technical challenges of building real-time threat detection at scale
- ›Lessons from building cybersecurity products as a solo engineer
Open to Collaborating On
- ›Open-source security tools for developers and small teams
- ›Early-stage cybersecurity startups as technical advisor or founding engineer
- ›Technical writing and speaking on backend architecture and security
- ›Mentorship for engineers interested in cybersecurity or startup building