Skip to content
View nevinshine's full-sized avatar
:octocat:
Building Sentinel
:octocat:
Building Sentinel
26 followers · 28 following

Achievements

Achievement: StarstruckAchievement: Pair ExtraordinaireAchievement: YOLOAchievement: Pull SharkAchievement: Quickdraw

Achievements

Achievement: StarstruckAchievement: Pair ExtraordinaireAchievement: YOLOAchievement: Pull SharkAchievement: Quickdraw

Highlights

Block or report nevinshine

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
nevinshine/README.md 
nevin@fedora-lab:~/security-research$ ./identity_matrix.sh

============== [ SYSTEM IDENTITY LOADED ] ==============

! USER_ID :   Nevin Shine (uid=1000)
! CONTEXT :   Systems Security Researcher
! FOCUS   :   Compiler-to-Runtime Constraint Enforcement &
              Hardware-Assisted Runtime Security

+ [0x01] CORE ARCHITECTURE
--------------------------------------------------------
  > Strategy   : Deterministic enforcement, bounded verification,
                 hardware-assisted mediation
  > Tech Stack : RISC-V, Z3 SMT, eBPF, LLVM, Verilog, Hypervisors
  > Objective  : Constraining runtime divergence from verified
                 compiler intent

┌───────────────────────────────────────────────────────────────────┐
│  [0x02]  SENTINEL STACK & ALLIED PROJECTS                         │
├──────────────┬────────────────────────────────────────────────────┤
│              │                                                    │
│   RTL Model  │  TCA Prototype    Verilog · Capability Filtering   │
│   Firmware   │  Sentinel PMP     RISC-V PMP · ebreak Routing      │
│   Hypervisor │  Sentinel VMI     x86_64 EPT · ARM64 Stage-2       │
│   Kernel     │  Telos Runtime    LSM · IFC Correlation            │
│   Compiler   │  Telos Language   Z3 Constraints · LLVM Codegen    │
│   Analysis   │  Sentinel-KV      LLVM IR · SMT Constraint Checks  │
│   Network    │  Hyperion XDP     XDP · Zero-Copy Filtering        │
│   Control    │  Cortex Engine    Capability Correlation           │
│              │                                                    │
├──────────────┴────────────────────────────────────────────────────┤
│                                                                   │
│  STATUS                                                           │
│  ──────                                                           │
│  TCA Prototype    ████████░░  simulated    RTL capability gate    │
│  Telos Language   ████████░░  prototype    IFC / LTL constraints  │
│  Sentinel-CC      ███████░░░  research     PCC experimentation    │
│  Hyperion XDP     ██████████  running      AF_XDP orchestration   │
│  Telos Runtime    ████████░░  active       IFC · taint tracking   │
│  Sentinel SMM     ██████░░░░  exploratory  SMM boundary research  │
│  Sentinel-KV      ██████░░░░  experimental LLVM IR analysis       │
│  Sentinel VMI     ███████░░░  partial      EL2 / EPT mediation    │
│  Cortex Engine    █████░░░░░  concept      L7 policy mapping      │
│                                                                   │
└───────────────────────────────────────────────────────────────────┘

+ [0x03] TOOLCHAIN & RESEARCH DOMAINS
--------------------------------------------------------
  # LANGUAGES:   C | Rust | Verilog | Go | Python | RISC-V/x86 Asm
  # COMPILERS:   LLVM | inkwell | AST Parsing | IR lowering | goblin
  # FORMAL:      Z3 SMT | IFC Constraints | RTL Verification
  # HARDWARE:    RISC-V | TCA Prototype | ARMv8 EL2 | AMD-V NPT
  # KERNEL:      eBPF | LSM | KVMi | BTF | Seccomp | Netlink
  # NETWORKING:  TCP/IP | XDP | DNS Interception | gRPC | Protobuf
  # SIMULATION:  QEMU | RTL Modeling | Bare-Metal Emulation
  # CONTROL:     Policy Graphs | Capability Routing | Runtime Correlation
  # CRYPTO:      Ed25519 | SipHash | HMAC | Capability Receipts
  # OBSERVE:     Prometheus | JSONL SIEM | BPF Ringbuf | SQLite

! [0x04] UPLINK ESTABLISHED
--------------------------------------------------------
  @: [email protected]
  L: Nürnberg, DE
  W: nevinshine.codeberg.page 
  G: github.com/nevinshine
  C: codeberg.org/nevinshine

========================================================

Pinned Loading

  1. telos-runtime telos-runtime Public

    A closed-loop security runtime preventing "The Great Exfiltration" and Indirect Prompt Injection in Autonomous AI Agents.

    Python 16 21

  2. hyperion-xdp hyperion-xdp Public

    High-performance stateful network defense using eBPF/XDP. The Network Satellite for the Sentinel Runtime research system.

    C 6 1

  3. sentinel-stack sentinel-stack Public

    A deterministic, multi-layered security runtime utilizing eBPF and hardware virtualization

    C

  4. sentinel-runtime sentinel-runtime Public template

    Runtime Malware Analysis Engine using Linux ptrace & Isolation Forests.

    C 1

  5. sentinel-vmi sentinel-vmi Public

    Hardware-assisted virtual machine introspection and runtime mediation for the Sentinel Stack.

    C

  6. telos-lang telos-lang Public

    A zero-trust systems programming language unifying business logic and kernel security policies through a dual-target LLVM BPF pipeline, Z3 formal verification, and Information Flow Control (IFC).

    Rust