Skip to content
View TheFruggg's full-sized avatar
3 followers · 3 following

Block or report TheFruggg

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
TheFruggg/README.md

Frug

SOC Analyst · Security Researcher

I work in cybersecurity with a focus on threat detection, secure software development, and applied security research. Experience in Cyber SOC & Cybersecurity Engineering.

My research interests sit at the intersection of mobile security, overlay networking, and cryptographic protocol analysis.

LinkedIn GitHub

Projects

Ember 5.0

Serverless, peer-to-peer, end-to-end encrypted Android messaging application.

  • No central server. Identity is a P-256 keypair generated at first launch — no phone number, no account, no directory.
  • Double Ratchet protocol (Signal-style) over direct TCP on a Yggdrasil IPv6 mesh network.
  • X3DH-lite key agreement: both peers derive the same initial root key from persisted identity keys via HKDF(ECDH(...), "ember-dr-init-v1"), requiring no online coordination.
  • AES-256-GCM encryption. Ciphertext stored locally via SQLCipher + Room; plaintext is never persisted.
  • QR code contact pairing — encodes display name, Yggdrasil address, port, and public key.
  • Configurable TTL ephemeral messages (5m–1d) with WorkManager-scheduled cleanup.
  • Biometric lock, FLAG_SECURE screen protection, encrypted key storage via Android Keystore.
  • Built with Kotlin, Jetpack Compose, Material 3, Hilt, and a custom "Living Flame" dark UI.

Kotlin Android Jetpack Compose SQLCipher

ARES 2.0

Advanced Reconnaissance & Event System — a self-hosted, real-time geopolitical and cybersecurity threat intelligence dashboard.

  • Ingests and normalises open-source data streams: 20+ RSS/Atom feeds, ADS-B military flight transponders (OpenSky + adsb.fi), AIS vessel tracking, GDELT geopolitical events, and NVD CVE feeds.
  • Per-country threat scoring (0–100) recomputed every 20 minutes, weighted by event category and recency.
  • Live tactical map: country choropleth, military aircraft markers (zoom-culled, ICAO type decoded), vessel positions.
  • Real-time WebSocket push via Celery → Redis pub/sub → browser.
  • 6-container stack: FastAPI, Next.js 14, Celery worker + beat, TimescaleDB/Postgres, Redis.
  • Flight data merges two independent ADS-B feeds with a three-tier filtering strategy to surface military and government aircraft alongside a deterministic civilian sample.

FastAPI Next.js Celery Redis Postgres Leaflet Docker

VuzixApp

End-to-end encrypted messaging application built for the Vuzix Blade 2 smart glasses platform.

Kotlin Android

Skills

Python Linux Wireshark Docker LaTeX

SOC Operations Threat Detection & Triage Network Forensics Penetration Testing Zero Trust Architecture

Education

1st Class Honours BEng Cyber Security & Digital Forensics — Edinburgh Napier University

Dissertation: Zero Trust Architecture in Financial Institutions — designed, implemented, and attack-tested both a traditional perimeter network and a Zero Trust model across segmented VMware environments.

Personal site coming soon

Popular repositories Loading

  1. My-Diet My-Diet Public

    HTML

  2. VuzixApp VuzixApp Public

    An end-to-end encrypted messaging app for use on Vuzix Blade 2 smart glasses

    Kotlin 1

  3. cyber_tools cyber_tools Public

    Python

  4. ARES_2.0 ARES_2.0 Public

    Python

  5. Ember-5.0 Ember-5.0 Public

    Serverless encrypted communications app

    Kotlin

  6. TheFruggg TheFruggg Public