I'm a Principal Security Engineer at Microsoft Research, where I'm the architect of Project Freta, a project for detecting evidence of OS and sensor sabotage in memory snapshots of live systems, the author of AVML, an open-source memory acquisition tool for Linux.
Previously, I was the architect for Project OneFuzz, a project that enables continuous developer-driven fuzzing to practively harden software prior to release (Used by a number of Micsosoft teams, including Windows OS) until it graduated from a research project to a fully funded effort in the Windows organization.
Previous efforts included:
- Principal Investigator (or Co-Principal Investigator) on a number of DARPA projects including SAFER (resilient communications), ICAS (tactical systems information analysis), CGC (the first fully autonomous cyberwar exercise), and was an architectural lead for Plan-X (foundational cyber warfare platform).
- The primary author for the Snort ruleset.
- Early contibutor to MITRE's CWE project.
I'm a member of sk3wl of r00t with two DEFCON black badges, the Shmoo Group, and the Order of Defense within the Society for Creative Anachronism.