Developer @Razz Security
Backend infrastructure, code review, training content, and offensive security research.
I work at the point where engineering discipline and offensive security overlap. At Razz Security, I build backend infrastructure, review code with a security-first lens, and develop training content grounded in real attack paths. Outside work, I spend most of my time on CTFs, lab design, adversarial research, and systems work that sharpens both operator instinct and engineering judgment.
- Build backend infrastructure, review code, and design secure engineering workflows that withstand scrutiny.
- Map assets, trust relationships, and attack paths to turn broad scopes into focused offensive plans.
- Founded a 50+ member college security community with workshops, guest lectures, and industry speakers.
- Shipped 3+ Unity games end-to-end while exploring systems and low-level engineering.
- Assess Linux, Windows, network, and Active Directory environments using realistic operator tradecraft.
- Prioritize exploitable findings that create leverage, from initial access through privilege escalation.
- Build labs, internal tools, and workflows that make offensive techniques repeatable and teachable.
- Designed Marionette, an OSCP-style boot-to-root VM with a realistic mapped attack chain.
- Deployed 150+ training modules and authored college lab manuals still used by students.
- Reached Pro Hacker on HTB, Season 10 Ruby top 20%, and TryHackMe top 1%.
|
|
|
|
| eCPPT | CEH | CEH Practical | eJPT |
A Public Key Infrastructure and Certificate Lifecycle Management Home Lab walkthrough, featuring EJBCA by Keyfactor |
An OSCP-like boot2root CTF challenge |
|
Linux rootkit analysis and low-level research lab focused on stealth, persistence, and forensic visibility |
Yet another SoC lab |
