Banner Image

All Services

Programming & Development blockchain, nft, cryptocurrency, tokens

Security Audits, Consulting

$50/hr Starting at $2K

crypto numeric experiments on github


- audits of cryptographic schemes and protocols, cryptocurrency design, wallet logic, consensus protocols, DEXes

- audits of soundness/safety (financial and behavioral) of traditional/'smart' contracts and DSLs

- service security: property-based testing (web-services, internal logic)

- can consult and implement regulatory requirements (eg financial transparency), depending on the case


Relevant experience: 


I used to work in highly secure corporate environments as engineer (investment banking), cryptocurrency (Cardano/IOHK), public websites (with millions of users) security, payment gateways (private corporate, implemented double-spending prevention), anomaly detection software (proposed more practical solutions).


Proposed successful designs for anomaly detection, found and fixed critical financial reporting issue (Dodd-Frank, leading to exploits and bypasses), developed solution for general contracts on top of bitcoin DLC (MVP, testnet), published a 'crypto-loan' paper in financial cryptology, worked with solvers and quick-checks, criticized Cardano (ouroboros including, as well as their DSLs), tested financial security of Marlowe/Plutus with complex ACTUS contract generators.


 Developed a crypto solution for oracles (preventing Sybil with PoW) and type-safe (anti-hedging) DSL for financial contracts, see magic peers in portfolio).


Anecdotal:

- I often notice security bugs in critical systems: databases, government, sometimes even ATMs (once).

- participated in cyber attacks on enemy propaganda once (Ukraine War). Proposed 'slow DDoS'.

- ethically bypassed co-worker's passphrase (together with Thai QA) once, notified him obviously to change it. Ethically entered secure database in corporate environment without authentication, by accident, reported it. Used proot in secure environment to bypass inconvenient double authentication (I had proper log-in permissions though).

- designed botnet once in student years for a friend (where bot-master is indistinguishable from bots in traffic), but did not implement it. It was related to my Master's thesis: routing p2p networks for drones in space.

- found a way to perform football betting directly through js (headless), without clicking. Did not exploit it.

- discovered that Cisco remote desktop software allows to share clipboard with client in a 'highly' secure remote desktop environment (investment bank). Reported, did not exploit.


- independently discovered logN for perfect power. David Harvey did it in 2019 using Newton-Raphson, I did it in 2025 without invoking it, 'AI' told me Harvey discovered logN already.

- designed deterministic algorithm exploiting monotonicities in DLP. Akin to lattices but without.

About

$50/hr Ongoing

Download Resume

crypto numeric experiments on github


- audits of cryptographic schemes and protocols, cryptocurrency design, wallet logic, consensus protocols, DEXes

- audits of soundness/safety (financial and behavioral) of traditional/'smart' contracts and DSLs

- service security: property-based testing (web-services, internal logic)

- can consult and implement regulatory requirements (eg financial transparency), depending on the case


Relevant experience: 


I used to work in highly secure corporate environments as engineer (investment banking), cryptocurrency (Cardano/IOHK), public websites (with millions of users) security, payment gateways (private corporate, implemented double-spending prevention), anomaly detection software (proposed more practical solutions).


Proposed successful designs for anomaly detection, found and fixed critical financial reporting issue (Dodd-Frank, leading to exploits and bypasses), developed solution for general contracts on top of bitcoin DLC (MVP, testnet), published a 'crypto-loan' paper in financial cryptology, worked with solvers and quick-checks, criticized Cardano (ouroboros including, as well as their DSLs), tested financial security of Marlowe/Plutus with complex ACTUS contract generators.


 Developed a crypto solution for oracles (preventing Sybil with PoW) and type-safe (anti-hedging) DSL for financial contracts, see magic peers in portfolio).


Anecdotal:

- I often notice security bugs in critical systems: databases, government, sometimes even ATMs (once).

- participated in cyber attacks on enemy propaganda once (Ukraine War). Proposed 'slow DDoS'.

- ethically bypassed co-worker's passphrase (together with Thai QA) once, notified him obviously to change it. Ethically entered secure database in corporate environment without authentication, by accident, reported it. Used proot in secure environment to bypass inconvenient double authentication (I had proper log-in permissions though).

- designed botnet once in student years for a friend (where bot-master is indistinguishable from bots in traffic), but did not implement it. It was related to my Master's thesis: routing p2p networks for drones in space.

- found a way to perform football betting directly through js (headless), without clicking. Did not exploit it.

- discovered that Cisco remote desktop software allows to share clipboard with client in a 'highly' secure remote desktop environment (investment bank). Reported, did not exploit.


- independently discovered logN for perfect power. David Harvey did it in 2019 using Newton-Raphson, I did it in 2025 without invoking it, 'AI' told me Harvey discovered logN already.

- designed deterministic algorithm exploiting monotonicities in DLP. Akin to lattices but without.

Skills & Expertise

Banking IndustryBitcoinBlockchainCardanoCryptocurrencyNFTRequirements AnalysisSecuritySecurity ConsultingSecurity TestingSmart Contracts

Related Work Collections

0 Reviews

This Freelancer has not received any feedback.