Projects

Security engineering projects, tools, and experiments. Building in public and sharing what I learn along the way.

Kubernetes RBAC Audit Report

Full access review of a production AKS cluster: 107 RBAC grants resolved against Entra ID, 46 findings including a tampered built-in ClusterRole, broken CI/CD identity chains, and an external-domain user with namespace admin.

KubernetesRBACAccess ReviewAKSEntra ID

Live

RBAC Security Report

AI-enhanced Kubernetes RBAC security assessment with detailed findings, attack scenarios, and remediation steps. Demonstrates SecureAudit AI capabilities.

KubernetesRBACAISecurity Assessment

Live

Threat Model Viewer

Interactive visualization tool for exploring threat models with assets, threats, and mitigations organized by layer. Built to help security teams understand and communicate threat landscapes.

SecurityReactNext.jsThreat Modeling

Live