> sys.identity // 51.51°N, 0.13°W

Giuseppe
Giona.dev

Mathematician turned engineer. I build
byte-level PDF processors
View latest projectLinkedIn
lines.ts
0
tests.pass
0
papers.cited
0
projects
0
02 / Projects

Shipped work

Open source. Source code and tests included.

Web Appupdated Mar 2026

PDF Changer

21 browser-only PDF tools with a verified processing environment. CSP-enforced network isolation, triple-monitor integrity chain, cryptographic audit trail. Passkey auth, offline entitlements.

21tools
299tests
29klines
ReactCloudflare WorkersWebAuthnpdf-libWeb Crypto
live at pdfchanger.org
Security Auditupdated Mar 2026

beacon

Business security surface scanner. 7 scanners check TLS, headers, email authentication, exposed files, third-party tracking, and form security. Every finding maps to a documented breach where the same weakness was exploited. 100 verified precedents with cited sources.

100precedents
50tests
7scanners
TypeScriptNode.jsTLSDNSOWASP
live at github.com/Giuseppe552/beacon
Encrypted Transferupdated Mar 2026

vault

Encrypted document exchange. Files encrypted client-side with AES-256-GCM before upload. The server stores ciphertext only. Key lives in the URL fragment, never sent to the server. Research-first: 9 security documents written before any code, covering the Mega breach, Firefox Send shutdown, and the code delivery problem.

23tests
9research docs
0crypto deps
AES-256-GCMHKDF-SHA256Web Crypto APICloudflare WorkersR2
live at github.com/Giuseppe552/vault
Security Toolupdated Mar 2026

threadr

Open source reconnaissance tool for security teams and penetration testers. 17 data source plugins, 5 analytics engines (Dempster-Shafer, spectral clustering, Katz centrality), request timing designed to resist statistical detection.

17plugins
282tests
5analytics
ReactNeo4jHonoBullMQTypeScript
live at github.com/Giuseppe552/threadr
Privacy Toolupdated Mar 2026

degauss

Identity exposure quantification. Scans 35 platforms for your accounts, measures exposure in bits (Shannon entropy, Fellegi-Sunter record linkage), maps the data broker supply chain as a directed graph, computes optimal removal order.

303tests
5.7klines
11attack scenarios
TypeScriptInformation TheoryFellegi-SunterGraph Theory
live at github.com/Giuseppe552/degauss
Crypto Researchupdated Mar 2026

ε-tx

Privacy analysis for cryptocurrency transactions. 8 attack surfaces, Dempster-Shafer evidence fusion, adversary models, inverse-OSPEAD for Monero, Boltzmann entropy for CoinJoins. Started as a maths dissertation.

8attack surfaces
340tests
18papers cited
TypeScriptInformation TheoryBitcoinMoneroLightning
live at github.com/Giuseppe552/epsilon-tx
More projects in progress
03 / Writing

Things I found while building

vault23 Mar 2026

Your passport copy is sitting on someone’s Google Drive

How citizenship agencies handle your documents, and why Google Drive isn’t acceptable for passport copies.

Read
beacon23 Mar 2026

I scanned 15 Italian citizenship agencies for basic security. 14 scored F.

87% have no DMARC enforcement. 0 out of 15 have a security.txt. Real scan data, anonymised.

Read
PDF Changer18 Mar 2026

Are online PDF tools safe? I checked the network traffic

iLovePDF sends your download token to Google Analytics. Smallpdf made 215 requests during a single merge.

Read
All posts