killian@portfolio:~$

bio.txt

I'm a security engineer focused on the intersection of LLMs and applied security — agentic systems, multi-agent orchestration, smart-contract auditing, and bug-bounty automation.

My recent work centers on building production-grade pipelines that use language models for reasoning about code and infrastructure: ranking targets, producing executable proofs-of-concept, and applying calibrated severity scoring with adversarial second-pass verification.

I care about empirical rigor — measurable calibration, sandboxed execution, cost-aware infrastructure, and shipping work that survives independent review.

projects.md

polysec-harness

multi-agent LLM security research pipeline · Python · Foundry · MCP

Production-grade pipeline that audits smart contracts and web apps via role-specialized AI subprocesses: target-ranking, parallel investigation with executable PoCs, adversarial verification through four hard gates, and reproducible artifact bundles. github.com/KillianM00/polysec-harness

bootgate

pre-OS UEFI password lock · C · EDK II · TPM 2.0 · QEMU+KVM CI

Pre-OS password lock written in C against the UEFI firmware interface. Runs from \EFI\BOOT\BOOTX64.EFI before any operating system loads, prompts for a password, then chainloads the OS bootloader on a successful unlock. Hand-written SHA-256, HMAC, PBKDF2 (100k iterations), and raw TPM2_PCR_Read marshalling for firmware-integrity tamper detection — no openssl dependency, only EDK II's MdePkg. Recovery passphrase, persistent exponential-backoff lockout, multi-OS boot menu, Secure Boot signing + MOK enrollment tooling, Linux and Windows installers. Automated QEMU+KVM test harness with 6 end-to-end scenarios running on every push under GitHub Actions CI. github.com/KillianM00/bootgate

hostcheck

cross-platform PC security auditor · Python · Windows / Linux / macOS

Cross-platform local security auditor. 82 read-only checks across hardening, network exposure, software vulns, persistence, credentials, privacy, and backup; auto-routes to the right check set based on the host OS. Every finding maps to a plain-English error code and a copy-paste fix command. Ships as a CLI, desktop GUI, and single-file Windows installer. 144 tests. github.com/KillianM00/hostcheck

leakcheck

VPN leak auditor · Python · CLI + GUI · cross-platform · Windows installer

VPN leak auditor with five independent checks (DNS, IPv6, routing, WebRTC, killswitch). Pure-Python RFC 5389 STUN implementation replicates browser WebRTC leak behavior without bundling a headless browser; structural tunnel detection recognizes unknown VPN providers by routing-table shape rather than name. Every finding maps to a short error code and a copy-paste fix. CLI, desktop GUI, and single-file Windows installer. 24 tests, MIT. github.com/KillianM00/leakcheck

bl2-save-editor

full-stack save editor for Borderlands 2 · Python · Flask · Three.js

Web application for editing Borderlands 2 save files end-to-end: character stats and currencies, full inventory and weapon-part editing, per-class skill tree editor with live point counters, 3D character and weapon viewer in-browser, and Gibbed code import/export. Holographic UI themed after the in-game aesthetic. github.com/KillianM00/bl2-save-editor

certifications.txt

  • Add your certification name here · issuing body · YYYY
  • Add another certification · issuing body · YYYY
  • Add another certification · issuing body · YYYY

# replace these placeholders with your real credentials (e.g. OSCP, CEH, Security+, eJPT, CISSP, GCFA, etc.)

skills.txt

Python 3
C (UEFI / firmware)
Solidity / EVM
Foundry · Anvil · Cast
Slither · Mythril
EDK II · OVMF · QEMU+KVM
TPM 2.0 · PCR sealing
Secure Boot · sbsign · MOK
LLM orchestration
Multi-agent systems
Pydantic · mypy
MCP (Model Context Protocol)
Docker · sandboxing
mitmproxy
OWASP Top 10
Smart contract auditing
Bug-bounty workflow
Threat modeling
Linux / WSL2
GitHub Actions CI

contact.txt

Open to security research roles, smart-contract audit work, and applied-AI-security engineering positions.