For my full-time job I am a software engineer for DirectDefense working on their ThreatAdvisor web app, which is used by DirectDefense consultants and clients to collaborate and improve the client's security posture. It is a really fun project where I have been able to increase my relational database skills and contribute with my JavaScript experience and design work. I can't speak of the details of the project here, but if you are a company looking for a partner in improving your security, DirectDefense has everything you need, from penetration testers and consultants to policy review and active monitoring. Tech Used: ASP.NET, React/Typescript, SQL Server, Kafka, Cypress, Ant Design, KnockoutJS, Bootstrap, Visual Basic, Webpack, Yarn, NPM, Vite, Rollup, Swagger, IIS, WSFC (Windows Server Failover Cluster) management, VMWare vCenter High Availability, Docker, Sentry, ServiceNow Integration, CKEditor, Cube.JS

atemOSC is an OSC server for controlling BlackMagic video switchers. It allows users to use apps such as TouchOSC and Lemur to design custom interfaces for controlling their video switcher by mapping a wide range of OSC commands to BlackMagic SDK commands. Combined with software such as OSCulator, it allows midi panel control of switchers for a fraction of the price that BlackMagic would charge you for their proprietary controllers. Tech Used: XCode, Objective-C, Travis CI, VVOpenSource/OSC

This is a spin-off from the CC Orlando App. I forked the inactive react-native-popover into react-native-popover-view, rewriting a lot of the core logic, migrating to TypeScript, and adding various features. I discovered a way to integrate this Popover view into React Navigation, so that views that show as modals on phones would show in a popover on tablets, and created react-navigation-popover. To test these projects, I also created react-native-popover-view-test-app, which can be used by others to check out the features and see if it will work for them. While I haven't maintained react-navigation-popover due to lack of interest, the main Popover project has been growing in popularity and integrated into many other react native applications, which is super encouraging to see. I'll continue maintaining it as long as people are using it and I can afford to. Tech Used: React Native, TypeScript

After years of struggling with training for cyber-security compeitions, for my capstone project I pitched an idea for a blue-team training platform that provides for defenders what Hack-the-Box provided for attackers. 5 other computer science majors joined my cause, and we created a great platform for creating and running blue-team training simulations in the cloud. We created custom Linux and Windows scoring agents (learning from my experience with LWASP), and integrated them tightly with the rest of the system that we built fully serverless on AWS. VMDefender can run simulations on-demand in the cloud and provide hands-on training experience to cyber defenders at all level, with nothing more than a browser, OpenVPN, and SSH/RDP clients. I would love to pick back up and continue this project eventually, because I really believe it could help people, but haven't had the time to do so. Tech Used: AWS (Amplify, EC2, VPC, VPN, Lambda, Cognito, DynamoDB, API Gateway, S3, CloudFront, AppSync), React/Typescript, Ant Design, Terraform, Python, RDP/SSH (user-facing)

The RevealFM radio app allows listeners to stream the Cumberland, PA based station to their iOS or Android devices anywhere in the world, as well as browse the list of regular teachings that are aired on the station. I've spent a lot of time making sure the music listening experience feels completely native to users, so when songs are streaming it feels like they are from a legitimate music streaming service. I love the message of hope that this station proclaims through its worship music and teachings, and can't wait to see how God uses this app for His glory. (All graphics for this app created by Paula Airesman; It's been a pleasure working with her and the team up in CC Cumberland). Tech Used: React Native, Firebase (database, functions)

The CC Orlando App is a cross-platform church app with a past sermon browser, event system, and bible reader built in. I've baked a lot of cool features into this Firebase-backed project, and way more goes on behind the scenes than anyone would guess. You can download it from the App Store and Google Play Store. Tech Used: React Native, ReactJS, Firebase (database, auth, functions, hosting), Python, Objective-C, Java, Origami, BeautifulSoup (web scraping), Sketch

Per the name, my OSC Scene Controller listens for OSC commands in the form of '/scene/key' and then sends out a predefined list of OSC commands to the appropriate endpoints, allowing for 1-tap transitions in lights, video, and sound for show control. It is very flexible and extensible, allowing for mapping, list resolutions, varied delays on sends, MIDI triggers, and other powerfull features. Recently, I also adding routing capabilities, so that it can send messages that start with prefixes other than `scene` to their appropriate destinations. With this, you can send all show control messages to this scene controller, and let it talk to the appropriate OSC endpoints. Written in Python, it runs on MacOS, Windows, and Linux, and is so lightweight that it can be run in parallel with other show-critical software. It works great with atemOSC, DMXIS, D-Pro, OSCulator, and any other software that talks over OSC. Tech Used: Python, YAML, pyinstaller, pythonosc, tkinter

I developed a working attack for the POODLE attack against SSLv3, which was discovered in 2014 and is now almost fully mitigated. The exploit code, available on Github, was accompanied by a presentation and report given in the Intro to Cryptography class that I took in Fall 2018. This project was really valuable to my own learning, and required me to dig deep into SSL/TLS Wireshark analysis, NFQueue through IPTables, raw packet manipulation, practical padding oracle attacks,and CORS request usage with cookies. You can find out all about the project on the Github, as well as track the progress I make. I have tons of ideas for where to take this exploit, and aim to increase it's value as an informational tool to demonstrate the potential of attacks like this. Tech Used: Python, Scapy, JavaScript, NetFilterQueue

Though missing a lot of polish, my Full-screen OSC timer is an excellent way to show a timer or a clock to a speaker while presenting, so that they can stay on track. It is a simple python script that can be run on any computer and listens for OSC input, then shows either a clock or a stopwatch that can be controlled by OSC commands. Combined with my scene controller at my church, we can automatically have the stopwatch start when the preacher starts speaking and have it available to them as a reference throughout the service. We have a Raspberry Pi that starts the full-screen timer on boot, and then sends the video output to a projector pointed to the back wall of the sanctuary. I may expand this to display arbitrary messages and a countdown time as well, but I'm just adding features as needed right now. Tech Used: Raspberry Pi, Python

Working with a team on a class project, in a few weeks we developed the Salu contact manager from scratch. Salu is built on MongoDB, NodeJS, and Express on the backend, and Vue + Bootstrap on the front end. We used JSON Web Tokens (JWTs) for authentication, powered by Passport and bcrypt for session authentication and password hashing. This was a great opportunity for me to be exposed to building custom web apps using a modified MEAN stack, getting more familiar with JWTs, and coordinating with a team over Git + Discord. I really enjoyed the simplicity of Vue and the great developer tools, and appreciated the continuity of using JavaScript for the entire stack. Tech Used: NodeJS, Express, Vue, Bootstrap

Did some development work for Total Concord Cleaning, but I'm under an NDA so can't say much past that. Tech Used: React Native, Firebase (hosting, firestore, auth), Hexnode MDM, Sketch

The same team that I worked on Salu with also helped build the Keyper Password Manager as our final project. I'd been using password managers for a while and was intrigued to re-engineer their security features to gain a better understanding of how they work. This was a very fun challenge, because we wanted to make a password manager that required no user trust in us as development team. To that end, we open-sourced all of the code and used client-side encryption, so all password entries were encrypted on the client side with the user's password using AES-256. With both a website and an Android app, we had to write equivalent client-side serialization and encryption functions in JavaScript and Java to ensure interoperability. The backend is built on Python Flask and MongoEngine, while the website used a full Angular stack, including Angular Material. I designed the website to be more simple to use than any password manager I've tried so far, with type-anywhere-to-search, shortcuts to copy any field and launch the site, a front-page password generator, and dynamic tags for grouping password entries (one category per entry was never enough for me). This project was a great chance to learn Angular and JavaScript hashing & encryption. Tech Used: Angular, Python, Flask, MongoDB, Android Studio, Java

The website at unity18.ccorl.com was built for Calvary Chapel Orlando's annual True Youth Conference, taking place in August. The website allows you to quickly see all of the important details, learn more about the three speakers, register for the conference, and contact the organizers. I built this using the Hugo static website generated with a heavily modified blog-based theme, and then set up registration through the Firebase back-end for the CC Orlando App using Stripe for processing payments. I've archived this for now because the website is complete and live, but I suspect I will be working on it again next summer before the conference. Hugo, Firebase (hosting)

The Linux Watchful Adaptive Security Compliance is a scoring engine for Debian-based Linux images, designed to help cyber security students improve their skills by scoring points for fixing vulnerabilities. LWASP has a simple graphical interface that allows instructors to quickly set up vulnerable images. The active scoring report is reminiscent of that used by the CyberPatriot program, and is especially helpful for students training for the CyberPatriot competitions. I've done my best to make the code modular, so that open-source contributors can easily extend the framework for their own needs. This has been archived in favor of the scoring system that we build for VMDefender, which is an overal better solution to the same problem. Tech Used: Python, ReactJS, BASH, GTK, pytest

This was created while I was an officer of the National Honor Society in High School. Wanting a way to track members, contact information, shirt sizes, meeting attendance, and community service hours, all while allowing for all officers to be able to administer the club, I created this Groups Manager. It accomplished all I was hoping for, allowing for administration through the mobile app by multiple officers simultaneously. Unfortunately, I only made it on iOS, and ran out of time to create the Android equivalent or a web site, and thus this project had to be put on hold. However, you can still check out the website and watch the video at encompassx.com/groupsmanager. It is worth noting that I won my district's Congressional App Challenge that year for my submission. Tech Used: Couchbase (self-hosted), ReactJS, dovecot/postfix, PHP, NGINX, PaintCode, BASH, iptables, Android Studio, Java

My passion for the Zendrum drove me to create this configurable, multi-touch drum machine for iOS devices. It worked well, allowing for near-instantaneous sound playback with intensity-based triggers and various modes, but the lack of interest and amount of work still needed to produce a finished product forced me to move on to other projects. However, this project taught me iOS development with Swift, advanced touch handling, and precise resource allocation, in addition to improving my skills in user interface and graphic design. Tech Used: XCode, Swift, PaintCode, Crashlytics

The Web Information Modular Management Portal (WIMMP) is a web server based on RethinkDB and Horizon, that allows for easy personalization of a template interface for sharing files, links, and information with viewers. It was designed for short-term use during trainings and conferences, and is easy to deploy. It is now live on NPM, though it did not work the last time I tested it. I plan to resurrect and re-engineer it a bit if I have time, because I still think it could be valuable as a tool for quickly setting up portal sites for tech conferences. However, if I don't have time, I may just archive it, because I suspect there are better options available these days that are more stable and up-to-date. Tech Used: Horizon, ReactJS, Webpack, Sketch

This was created while I was the Chief Petty Officer of a local Sea Cadet unit. I noticed that keeping attendance on Paper was tedious and did not adapt to changing circumstances, and manually calculating PRT scores was even worse, so I created an app to do it for me. NSCC Manager was actually a fairly comprehensive app, allowing for configurable attendance taking with parameter injection and PDF Report generation; quick and easy PRT score entry, immediate score calculation, and score tracking over time; and cadet information tracking, including rank, age, and contact information. NSCC Manager was a one-stop shop for day-to-day unit administration, and even had a web portal that allowed for viewing of attendance records and PRT scores. Unfortunately, lack of traction in the unit and at NHQ forced me to abandon this project. However, it was an amazing introduction to AWS, including DynamoDB, IAS, and other services, as well as advanced view configuration on iOS. It also introduced me to the world of software documentation and business, as wrote up documents and proposals to send to NSCC National Headquarters. Tech Used: AWS (DynamoDB, Lambda), XCode, Objective-C, jQuery, Apache, Sketch

You can learn more about the project itself at OpenGimbal.net. During the 2 years that I worked on the project during High School, I created a re-vamped interface that was responsive, looked pretty cool, and was easier to navigate. I added joystick control to the telescope and overhauled large portions of the code to make it more readable and efficient. Tech Used: Arduino, Python, jQuery, Sketch

This is another spin-off from the CC Orlando App. Currently it can only trigger one special vibration type on iOS, but I hope to expand it to include a wide variety of different vibration types and port it over to Android as well. This has been archived in favor of react-native-haptic-feedback, where I contributed to make their library just as performant as mine was for my specific use case. Tech Used: React Native, JavaScript, Objective-C, Java

I released this as the final project for my AP Calculus BC class in my junior year of High School. It is very simple, and uses a (custom) specially-built graphing library to model a variety of concepts that I learned in the class. It is great for visual learners to play around with the abstract concepts using various types of functions and interactive calculations. You can download it for iOS devices on the App Store. Tech Used: XCode, Objective-C, Sketch