I’m an engineer living in Berlin, where I work on software for musical instruments at Ableton. I previously worked in Infosec, on emulators, operating systems, and compilers. I found a memory corruption bug in LLDB once and also have a small patch in the Linux kernel.
I also produce music. (And have been for longer than I’ve been programming). I used to make metal, but now make wave and did a one-off emo EP once.
In 2020, I took a gap year and created Timestamps, a workflow product for DJs, which I grew to a humble $50 MRR before making it free. I then spent the fall working at a fast food restaurant. I also discovered an interest in writing during this time, which is when I wrote many of the posts on this blog.
Open Source
- file(1) – Reported ELF coredump parsing bug
- Linux man-pages – Reported undocumented inaccuracy in /proc memory statistics
- Linux Kernel – Discovered & patched misleading error logging during OOM conditions
- LLDB – Discovered & patched memory corruption bug in “finish” command
- osquery – Significant improvements to coverage of local certificate stores on Windows (via Trail of Bits)
- DMTCP – Implemented filesystem path virtualization for checkpointed applications
Public Speaking
- 2020 – Audio Developer Conference: “Reverse engineering DAWs to build custom workflow tools” (online)
- 2019 – QueryCon: “osql: The community-oriented fork of osquery” (New York)
- 2018 – NorthSec; High Confidence Software & Systems Conference: “Binary analysis, meet the blockchain” (Montreal)
- 2017 – O’Reilly Security; NYC Python Meetup: “Symbolic execution for humans” (New York)
- 2017 – Empire Hacking: “Automatic bugfinding for the blockchain” (New York)
- 2016 – NU Hacks: “Introduction to Binary Exploitation” (Boston)
- 2016 – HackBeanpot Finalist: “binfmt_mysc” (Boston)
Academic Papers
- ASE 2019: “Manticore: A User-Friendly Symbolic Execution Framework for Binaries and Smart Contracts”
Press
- HYPEBEAST covered the release of “DANGER” which I produced for YAOKAI & Sleet Mage.