Building

• Terraform Attack Automation 2021

  Automation scripts demonstrating attack techniques against Terraform Cloud/Enterprise environments, including secret extraction, state file access, and arbitrary command execution on Terraform workers.

• Daytona 2019

  Open source secrets injection tool for containers and services. Automates authentication and secret retrieval from HashiCorp Vault via Kubernetes, AWS, GCP, and Azure identity mechanisms.

• Patent: Method of Secrets Injection for Autonomous Vehicles 2020

  Patent covering a system for securely distributing cryptographic credentials to autonomous vehicle fleets via a centralized secrets management service with per-vehicle access controls and non-persistent storage.

• Patent: Detecting Operation of an Autonomous Vehicle on an Untrusted Network 2018

  Patent covering a beacon token mechanism for server-side detection of autonomous vehicles operating on untrusted networks, without requiring the vehicle itself to identify the compromise.