Hyperlane
Cross-chain messaging protocol
Review of the Hyperlane bridge implementation on Aleo chain.
Scope
- •Leo programs
- •Token application implementations
Report coming soon
aleo
Not really a "portfolio" or a CV, more of a list of things I've been working on lately...
Enjoy 😊
Auditing
Recent cryptography & ZK audits
Deep reviews of protocols I've been helping secure lately.
November 2025
(confidential)
Post-quantum proof system
Review of an implementation of LaBRADOR, a post-quantum proof system based on lattices
Report coming soon
rustpqc
Celestia
Data availability sampling protocol
Review of the Celestia implementation of ZODA for data availability sampling.
Report coming soon
godata-availability sampling
Anza/Solana Token 2022 Confidential Transfers
Private token
Review of the implementation of the Confidential Transfers extension for the "Token Extensions Program" (Token 2022)
Scope
- •ZK El Gamal proof program and SDK
- •Token 2022 confidential transfers extension
Report coming soon
solanarust
Summa (PSE)
Proof of solvency
Proof of solvency protocol for centralized exchanges.
I also wrote a detailed code walkthrough of:
View report
halo2rustsolidity
Latest projects
mpcco-snarkstaceo
Secure MPC matching via TACEO's co-snarks
I built a Private dating app 🌶️ using TACEO's co-noir (experimental) tech.
It was a fun project to see what's possible with private shared state
App is probably down, but just in case if you want to take a look: co-match.vercel.app
It was a fun project to see what's possible with private shared state
App is probably down, but just in case if you want to take a look: co-match.vercel.app
privacyzero-knowledgenoir
Privacy-preserving housing application using 2D-Doc
Built a PoC for French people to avoid sharing their ID documents with their landlords.
Takes in an ID and a salary slip, and outputs a ZK proof that the ID is valid, and the salary is enough to cover the rent.
See the detailed post on Hyli's blog
You can play with the Noir circuits on tdd.nr repo.
If you're lucky, maybe the app is still live...
Takes in an ID and a salary slip, and outputs a ZK proof that the ID is valid, and the salary is enough to cover the rent.
See the detailed post on Hyli's blog
You can play with the Noir circuits on tdd.nr repo.
If you're lucky, maybe the app is still live...
Zero-Knowledge
mpczero-knowledgewebassemblynoirzk-tls
Helping bring zk proofs to the browser with a WebAssembly-friendly Noir SDK
noirzero-knowledge
Implementing recursive proofs in Noir
mpceducation
Updated mpz-play to the latest version of mpz. A comprehensive playground for learning and experimenting with the mpz framework. Great resource for understanding MPC concepts.
starkzero-knowledgeeducationpython
Implementing STARKs from scratch to understand the protocol deeply
halo2securityauditing
Found a soundness bug in 'lookup_any' in PSE's Halo2 proving system
You'll find the PoC for the bug on this repo
zero-knowledgesecurityauditingresearcheducation
Top fellow in ZK security fellowship
halo2testing
Template to quickly start a Halo2 project
All you need to start a Halo2 project, from testing to production
halo2securityresearcheducation
Exploring edge cases and exploits in Halo2 circuits
I wrote a detailed blog post, and multiple circuits, on how to write secure Halo2 circuits, and how to test them
halo2mock proversecurity
Emulating malicious provers by modifying cell values in the Mock Prover
A nice feature I wanted while developing circuits.
This was my first PR in Halo2, it was fun to dive into the codebase
This was my first PR in Halo2, it was fun to dive into the codebase
halo2securityprivacy
Implementing Tornado Cash in Halo2
Fun project to get more familiar with both Tornado Cash and Halo2.
On top of the circuits, I wrote a detailed blog post to explain everything
A part 2 is supposed to come someday... mostly to implement the Poseidon hash function (from scratch?), but I haven't had the time to finish
On top of the circuits, I wrote a detailed blog post to explain everything
A part 2 is supposed to come someday... mostly to implement the Poseidon hash function (from scratch?), but I haven't had the time to finish
Other...
Learning low-level security: from 'simple' binary exploitation to kernel exploits and more
I'm passionate about security, especially low-level (like reverse engineering, assembly, and binary exploitation) but I also enjoy web and network hacking.
Entirely self-taught, mostly through HackTheBox and Root-Me
From "simple" binary exploitation to kernel exploits and more.
Entirely self-taught, mostly through HackTheBox and Root-Me
From "simple" binary exploitation to kernel exploits and more.
evmrusttesting
Contributing to Foundry, a tool for building and testing smart contracts
I merged multiple PRs, based on my needs developing smart contracts:
See more details in my blog post here
securityevmsolidityzero-knowledge
Smart contract security bootcamp
I was awarded the first place in the first cohort of Secureum Epoch 0, a smart contract security bootcamp.
See the bootcamp contentevmsolidity
Main decentralized EURO stablecoin
I was a core contributor to Angle, the main decentralized EURO stablecoin.
Reached €200M TVL while I was there
Reached €200M TVL while I was there
Full-stack journey from mobile, to infrastructure, to cryptography
Over the past decade, I've worked across the stack.
From crafting iOS mobile apps, to building backend-heavy web applications with Node.js, to running infrastructure as a DevOps engineer on AWS and GCP.
This foundation now fuels my work in cryptography and security.
From crafting iOS mobile apps, to building backend-heavy web applications with Node.js, to running infrastructure as a DevOps engineer on AWS and GCP.
This foundation now fuels my work in cryptography and security.