Digital Forensics
File triage, hash verification, entropy analysis, Windows artifacts, registry forensics, and structured incident reconstruction.
Cybersecurity · Digital Forensics · Threat Analysis
Doing the work.
Building what's missing.
Active-duty U.S. Army professional transitioning into cyber operations. Background in investigation, evidence analysis, and incident response. The tools came from doing the work, not the other way around.
10Years Learning
7Years Practicing
6Certifications
3Deployed Tools
01 / About
Calm under pressure.
Technical by intent.
Ten years of learning and seven years of hands-on practice produced something certifications confirm but do not fully capture: the ability to stay focused under pressure, communicate across technical and non-technical teams, and solve problems that don't come with instructions.
The tools I've built are evidence of how I think, not a substitute for doing the work. MailFort came from investigating email-based threats and needing cleaner signal. Forenstix came from needing faster file triage during forensic analysis. PhishFinder came from identifying phishing patterns without a platform to surface them clearly. The work drove the builds, not the other way around.
I am expected to complete my Bachelor's degree in cybersecurity with a digital forensics concentration in August 2026. The goal: become the analyst who investigates clearly, responds quickly, and communicates findings without confusion.
02 / Skills
Where I bring value
Email Threat Analysis
Header inspection, DKIM/SPF/DMARC validation, phishing pattern detection, attachment risk scoring, and BEC investigation.
Security Operations
SIEM concepts, alert triage, log review, network forensics, incident response workflows, and threat indicator correlation.
Tool-Agnostic Execution
Effective with or without a dedicated platform. Python, PowerShell, and custom tooling when needed. The capability comes first; the tool is just how it gets done.
Penetration Testing
Reconnaissance, enumeration, exploitation fundamentals, vulnerability assessment, and structured reporting. Approach informed by a defender's mindset: understanding attacker methods to close gaps before they're used.
03 / Projects
Security work with proof behind it
MailFort
A modular Gmail threat analysis engine. OAuth authentication, folder-level mailbox scanning, header inspection, DKIM/SPF/DMARC validation, heuristic risk scoring, and explainable structured reports. Expanding into enterprise IMAP abstraction for multi-provider coverage.
Python
OAuth 2.0
Gmail API
IMAP
View on GitHub
Forenstix
Flask-based forensic file triage platform. SHA256/MD5 hashing, magic-byte detection, entropy scoring, IOC extraction, VirusTotal API integration, and AI-generated investigation reports.
Python
Flask
VirusTotal
View Forenstix Live
PhishFinder
Deployed phishing analysis engine with DNS intelligence, SPF/DKIM/DMARC header inspection, and weighted risk scoring. Produces structured threat reports. Live on Railway.
Python
Flask
Railway
View on GitHub
04 / Experience
Built through service, study, and execution
U.S. Army, Active Duty
Two years of active-duty service built on a decade of self-directed cybersecurity study: systems troubleshooting, operational discipline, accountability, and mission execution under pressure.
B.S. Cybersecurity, American Military University
Digital forensics concentration. Coursework spans network forensics, computer forensics, cryptography, biometrics, and incident response. Completing August 2026.
Certifications
Network+
Security+
CySA+
SecAI+
CSAP
SecurityX
All CompTIA. Expiring 2029.