Security Research & Case Studies

Documenting my journey in cybersecurity research, vulnerability discoveries, and responsible disclosure practices.

Research Philosophy

Responsible Disclosure

Always following responsible disclosure practices to help vendors fix vulnerabilities before public disclosure.

Educational Focus

Sharing knowledge and methodologies to help others learn about security research and vulnerabilities through abuse and misuse and platforms and services.

Community Driven

Contributing to the security community through research, documentation, and collaboration. With an emphasis on fixing the greater good.

Research Areas

Email Security

Researching email security mechanisms, SPF/DKIM/DMARC implementations, and email gateway vulnerabilities.

SMTP SPF DKIM Email Security

SaaS Applications

Analyzing security implementations in Software-as-a-Service platforms and cloud-based applications.

OAuth SAML API Security SaaS

Authentication Systems

Examining authentication mechanisms, single sign-on implementations, and identity management systems.

SSO MFA Identity Authentication

Published Research

View all →

Automating Home Assistant Certs with Cert Warden

Automating Home Assistant Certs with Cert Warden, Let's Encrypt, and working around Home Assistants Security

LowAugust 24, 2025

Home Assistant SSL Certificates

DisclosedRead more →

My first vulnerability – Mimecast Sender Address verification

I want to start and say this was something completely new to me, my only other previous security research experience was something a coworker noticed and I helped report. So what went wrong, to me the backstory is pretty interesting.

HighJanuary 10, 2020

Email Mimecast Security

FixedRead more →

Case Studies

View all →

Urllo Case Study: Ministry Brands

While helping Ministry Brands scale and modernize infrastructure across 25+ applications and 50+ white-label websites, I led efforts to eliminate SSL and redirect chaos by partnering with Urllo-transforming a fragile, manual process into a secure, automated system that business leaders noticed for its reliability.

MarketingMay 25, 2023

Client: Urllo • Industry: E-commerce

Case Study Redirects Domain Management

View case study →

MarkMonitor Case Study: Ministry Brands Domain Portfolio Management

How Ministry Brands partnered with MarkMonitor to secure and streamline domain portfolio management across 50+ white-label websites, implementing enterprise-grade brand protection and automated domain security monitoring.

Security AssessmentMarch 22, 2021

Client: MarkMonitor • Industry: Technology Services

Case Study Domain Management Brand Protection

View case study →