00 — Index

Mohammed Yasin

Security Engineer
& Digital Architect

Kernel-level offense, cloud-native defense — I build systems that live on the boundary between creation and destruction.

Get in touch

Begin

05+ Years in production¹

08 Systems shipped²

∞ Kernel → Cloud

01 Background & Working Style ¶ Background

I build systems that are not just functional, but extraordinary — where security meets elegance and infrastructure becomes invisible.

With five years engineering cloud-native platforms at scale, I work fluently across Golang, Rust, Kubernetes, and eBPF. My range runs from kernel-level security research to enterprise cloud architecture — and I design every system to push the boundary of what's possible without ever losing sight of the people who depend on it.

Engineering

Cloud-Native Architecture
Distributed Systems
Kernel Engineering
Runtime Security

Approach

Research-first
Adversarial thinking
Ship & measure
Document the why

02 Philosophy Two studies

S.01 · Plate I

Above the Cloudline

To defend a system you must first learn to take it apart. Offense is not the opposite of safety — it is its rehearsal.

On offensive research

S.02 · Plate II

The Invisible Floor

The best infrastructure disappears. When the kernel, the network, and the runtime all hold, the work that remains is the only work that ever mattered.

On defensive design

03 Experience Work history

2024 — Present

Backend Engineer — Kroger

Architected real-time delivery routing and zone-optimization services with haversine geospatial math and a distributed datastore — millions of location queries daily at sub-50ms latency.

Golang
YugabyteDB
Redis
Kubernetes

2022 — 2024

Cloud Engineer — Bank of America

Built a self-service provisioning platform for containerized workloads on a secure microservices architecture, with compliance guardrails baked into every deployment path.

Golang
OpenShift
Tekton
ArgoCD
gRPC

04 Selected Work Independent systems

B.01 · Plate I

RedHands

An MCP server exposing offensive-security tooling to AI agents — autonomous reconnaissance, exploitation, and reporting through a standardized protocol interface.

Golang
MCP
AI Agents

AI Security 2024 Active

B.02 · Plate II

Aegis-Shadow

A dual-module eBPF research framework demonstrating offensive rootkit techniques alongside defensive runtime auditing — a controlled environment for Linux-kernel exploration.

Rust
eBPF
Linux Kernel

Kernel Research 2024 Research

B.03 · Plate III

KubeDagger

An eBPF-based offensive toolkit for network discovery, process hiding, and container breakouts — built for stealthy red-team assessments of Kubernetes environments.

Golang
eBPF
Kubernetes

Security Tooling 2023 Stable

B.04 · Plate IV

NeuronTrace

Kernel-level behavioral containment for AI agents using eBPF and LSM — monitoring and restricting autonomous actions at the syscall layer before they touch the system.

Rust
eBPF
LSM

AI Safety 2024 Active

B.05 · Plate V

Barzakh

A controlled white-hat UEFI bootkit simulation for academic research and defensive detection engineering — helping defenders understand firmware-level persistence in the wild.

C
UEFI
Firmware

Firmware Security 2023 Research

B.06 · Plate VI

Warmor

A security enforcer pairing eBPF syscall monitoring with WebAssembly-based policies — kernel-level observability and portable, cross-platform workload protection in one engine.

Golang
eBPF
WebAssembly

Kernel & WASM 2022 Stable

05 Toolkit The instrument set

T.01GolangBackend & systems
T.02RustKernel & safety-critical
T.03eBPF / LSMRuntime observability
T.04KubernetesOrchestration at scale
T.05WebAssemblyPortable policy engines
T.06gRPC / ProtobufService contracts
T.07PostgreSQL / RedisData & caching
T.08AI / ML SystemsAgents & containment