The work — each one a real shipped outcome.
Reverse-engineering, atmospheric simulation, MPC infrastructure, firmware disassembly, responsible disclosure, and a hand-rolled RSA from age 17.
twilight — Photons in, prayer times out.
Monte Carlo radiative transfer through a 50-shell spherical atmosphere — the most accurate dawn and dusk calculator ever built. 978 tests. GPU-accelerated on Metal, Vulkan, CUDA, and WebGPU.
Gaganode — One Python rewrite. Four times the throughput.
Reverse-engineered Meson Network's proprietary Java client. Exposed single-byte XOR 'encryption,' unauthenticated remote command execution, and IP spoofing across 217k deployed nodes. Rewrote the client in Python with asyncio for 4× the original throughput.
Huawei Balong — VxWorks RE — C-core and A-core disassembly for remote eSIM on hardware that doesn't officially support it.
Reverse-engineering the proprietary VxWorks-based cellular modem firmware on Huawei Balong chipsets — both the comm processor (C-core) and application processor (A-core) — to implement remote eSIM provisioning on hardware that doesn't officially support it.
Bayan — Progressive substitution. Spaced repetition. On-device speech recognition.
iOS app that helps non-Arabic speakers gradually learn Quranic Arabic through progressive substitution. Built for the Quran Foundation Ramadan 2026 Hackathon. Tarteel AI Whisper integration via CoreML for on-device pronunciation feedback.
Halo — MPC wallet — Kaspa. Multi-chain. Inside a Telegram Mini App.
Architected and built the first non-custodial MPC wallet for the Kaspa network, supporting multi-chain functionality on a UTXO-based model. Backend in Node.js. Designed a high-performance Twitter scraper and a RAG-based AI model for real-time market sentiment alongside it.
Auth0 captcha — undone — A path-length threshold cleanly separated real glyphs from cubic-Bézier noise. No ML.
Reverse-engineered Auth0's SVG-based captcha. A single statistical observation — text glyphs use short path definitions, decorative interference uses long ones — collapsed the entire defense to a 100-character heuristic.
DSB — responsible disclosure — Reported through responsible disclosure. Remediated. No data was misused.
Discovered a critical vulnerability in DSB (Danish national railway) ticketing infrastructure that exposed the full ticket database — including records from internal terminals — containing personally identifiable information. Reported responsibly; DSB remediated.
RSA from scratch — crypted-chat — Pre-shared key chat over TCP, with the entire crypto stack rolled in-house.
A chat platform that establishes a secure TCP connection via a hand-implemented RSA key exchange. Probabilistic prime generation via Miller–Rabin primality testing. Built in Java + Processing during gymnasium (HTX).
Arabic Islamic content with AI-translated subtitles. Cloudflare Workers + R2 + ElevenLabs Scribe v2.
MCP-based AI trading assistant. 16 tools, 6 resources, Python data pipeline + TypeScript MCP server.
Broadcast-grade subtitle converter from ASR JSON to WebVTT/SRT with quality guardrails and phrase splitting.
Let's take the housing off something.
Reverse-engineering, Web3 infrastructure, firmware teardowns, consulting. I answer email inside 24 hours.