Skip to content
View Paulinhx's full-sized avatar
πŸŽ›οΈ
Research
πŸŽ›οΈ
Research
114 followers · 238 following

Achievements

Achievement: Pull Shark

Achievements

Achievement: Pull Shark

Block or report Paulinhx

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Paulinhx/README.md

Security Engineer | Ethical Hacker | Designer

I design and secure systems across cloud, code, and containers, automating defense, challenging assumptions, and building trust by default. I work at the junction of entropy and architecture, crafting living digital ecosystems beneath sky and earth.

Core Domains

  • DevSecOps: Embedded security across CI/CD (AWS, Azure, GitHub Actions)
  • Offensive Security: Vulnerability assessments, custom tooling, red team automation
  • Cloud Security: Secure architecture reviews, container hardening, IAM strategy
  • Detection Engineering: Threat modeling, log analysis, custom rules & alerts
  • Governance: Policy enforcement, compliance (ISO 27001, SOC 2, GDPR, EU AI Act)

View Full Portfolio

Tech Stack

Security
πŸ› οΈ Nmap, Burp Suite, Wireshark, Metasploit, Splunk, Osquery
πŸ” Sigma, YARA, Suricata, Zeek, Alien Vault OTX
πŸ“¦ SAST/DAST (Semgrep, SonarQube), Threat Modeling (OWASP, MITRE, STRIDE)

Cloud & Infrastructure
☁️ AWS (IAM, GuardDuty, Security Hub), Azure Defender πŸŒ€ Docker, Kubernetes, Terraform, Ansible
πŸ” GitHub Actions, GitLab CI, OPA, HashiCorp Vault

Software Engineering
πŸ’» Python, TypeScript, JavaScript, Bash, SQL
βš›οΈ React, Next.js, Node.js
🎨 CSS, HTML, Figma, Locofy.ai, Notion

Data & Automation
πŸ“Š JSON, YAML, Regex, API design, scripting for automation & security

Writings

Fragments β€” design, forensics, philosophy, and cybernetic futures.
πŸ“– Medium: @Paulinhx

Philosophy

  • Secure by design, not by patch
  • Ethics before tools
  • Free software is sovereign software

β€œTo defend a system, you must understand what it dreams of becoming.”

Let’s connect β€” collabs, audits, or make music!

Pinned Loading

  1. aegisflow aegisflow Public

    AegisFlow is a threat-aware CI/CD pipeline that integrates real-time threat intelligence (AlienVault OTX), MITRE ATT&CK-based static analysis, and SBOM-driven CVE detection to automate secure softw…

    Python 2

  2. secure-ci-pipeline secure-ci-pipeline Public

    Security-First CI/CD Pipeline: Automated static and infrastructure security checks using Terraform, Checkov, OPA, Semgrep, Trivy, and GitHub Actions.

    Python 1

  3. secure-sbom-supplychain secure-sbom-supplychain Public

    End-to-end supply chain security demo using Flask, Syft (SBOM), Cosign (image signing), and GitHub Actions.

    Python 1

  4. soc-dashboard soc-dashboard Public

    An hybrid Security Operations Center (SOC) dashboard built with Next.js, featuring real-time security event monitoring, AWS integration, and Cognito authentication.

    TypeScript 2

  5. Python-Nmap-Scanner Python-Nmap-Scanner Public

    This Python script provides a custom implementation of a port scanner using the nmap library.

    Python

  6. Python-Cipher Python-Cipher Public

    This Python script offers a custom implementation of the Caesar cipher, a cornerstone of classical cryptography.

    Python