GitHub Activity
Vulnerability Management and Remediation
Research Team Director Experience
Software Development Manager Experience
AttackerKB (the Attacker Knowledge Base, an open data project)
Other internal Rapid7 projects/initiatives
Patents
"Manipulating Inter-chip Communications For IoT Security" (Document ID: US 11921912 B1, Date Published: 2024-03-05)
"System and method for managing a system of appliances that are attached to a networked file system"(Document ID: US 20140082129 A1, Date Published: 2014-03-20)
Hobbyist/Open Source/Other Projects
Co-creator of an open-sourced project to allow machine-in-the-middle recording/replay/manipulating communications over a UART/serial connection (see patent US 11921912 B1 listed above)
Created a small, independent "supply chain checker" to ensure published builds/artifacts/packages have not been manipulated.
Created an open source "duck like" USB dongle for payload delivery using a Raspberry Pi Zero.
Performed end-to-end bring-up of an i.MX-based solution (running Linux) to receive-and-forward LoRa sensor data over long range radio, ultimately forwarding the received sensor data over Ethernet to storage for later analysis.
Successfully added the new (as of 2020) Apple app notarization process to an automated build+package workflow, allowing for easy distribution of a macOS app outside of the app store.
Created and deployed a backend+UI for upload, analysis, and presentation of motion data recorded via custom HW devices capturing accelerometer, magnetometer, and gyroscopic data many times per second.
Created a cross-platform GUI application using Python and WxWidgets to drive configuration and execution of an embedded device on the network.
Created a simple packet inspector which would dissect incoming packets and insert particular packet info into a MongoDB database for later analysis/correlation.
Successfully recovered data from a "dead" consumer-grade NAS device.
Performed driver work for a Linux kernel to support wifi, aufs, and GPIOs and I2C-based ADC device access on a Freescale i.MX platform, also created 'server' application to accept-and-respond-to requests/commands from the network regarding GPIO and ADC data.
Worked closely with a HW designer to bring up and exercise custom board (Marvell PXA processor, display, touch screen, radio, SD card, …), creating SW tests accessible to mfg via bootloader menu.
Worked closely with a HW designer to bring up and exercise custom boards (Philips LPC and Chipcon devices) communicating over a 2.4 GHz RF link, wrote SW to robustly support a firmware update over the RF link.
Created a Visual C++ 6.0 (using MFC) application to pull data over USB from a device which reported data/errors/etc. coming from both sides of a serial port connection.