feeds: sync--:--:-- utc
operator // anthony tropeano

Anthony
Tropeano

Security Engineer·Applied Cryptography & Secure Systems

Security engineer who ships code. I turn cross-layer trust assumptions into deployable controls across cryptography, applications, infrastructure, and operations.

available for workremote / relocation
SIGINT
USGS + NASA FIRMS
seismic --
fire --
proj: orthographic
● sync
// featured work04 selected
01 / dis-crypto
DIS-Crypto
open source · MVP complete
Authenticated classical + post-quantum cryptography with a small API that makes unsafe combinations unreachable.
Built in Rust behind a single generated C ABI, with bindings for C, C++, Python, Node.js, and Bun. Callers choose a security level, not algorithms or parameters. Core asymmetric trust operations combine classical and post-quantum algorithms, while every encryption mode is authenticated and key-committing. Optional identity, signed-manifest, JWT, and private mTLS modules extend the everyday API.
Stack
RustCC++PythonNode.jsBun
KEM
P-256 + ML-KEM (hybrid)
Signatures
Ed25519 + ML-DSA / SLH-DSA (hybrid)
AEAD
AES-256-GCM-SIV / AES-256-GCM / ChaCha20-Poly1305
02 / sigint
SIGINT
live
Real-time OSINT intelligence dashboard on an interactive globe.
Combines eight live data sources: aircraft, vessels, seismic activity, fires, weather, cyclones, GDELT events, and news. A custom Canvas 2D and Web Worker engine renders the globe off the main thread. Cross-source correlation produces scored alerts and watch-mode notifications, with PWA and offline support.
Stack
TypeScriptReact 19BunCanvas 2DWeb Workers
Type
OSINT platform
03 / o-tether
O-Tether
closed source · shipped
A five-layer inline UTM appliance that turns any router into a secure travel network.
Runs on a low-cost ARM single-board computer and provides an automatic phone-tether bridge, a default-deny firewall, threat-intelligence filtering, flow classification, and inline intrusion prevention. Releases are signed, and the appliance fails closed.
Stack
ARMUTMIPSsigned releases
Type
Security appliance
04 / trashscanner
TrashScanner
in development
Scan it before you can it™. A zero-trust SaaS reference implementation.
Every request clears six independent gates before data access: identity, freshness, device, possession, entitlement, and ownership. A signed code manifest is verified at boot with no override. Per-service Ed25519 audit chains, single-use refresh rotation, dual-path device authentication, and least-privilege database roles provide defense in depth.
Stack
TypeScriptBunHonoReactZitadel
Target
OWASP ASVS L2 · NIST SP 800-63B AAL2
// about

Based in Ocala, Florida, I work across cryptography, application architecture, infrastructure, networking, and operations. Because security failures often emerge where those layers meet, I trace trust assumptions through the full system and turn them into constrained interfaces, fail-closed controls, and systems that remain practical to deploy and operate.

I founded Defend I.T. Solutions and graduated summa cum laude from the University of Arizona's NSA CAE-CO Cyber Operations program. I am starting an M.S. in Artificial Intelligence (Data Science) at Nova Southeastern University in fall 2026. I am open to security engineering, DevSecOps, and security-focused software engineering roles.

// contact

Send a message

Open to roles, projects, or questions.