visitor@leonardo:~$ whoami

LEONARDO NGUYEN

const role = "security-minded fullstack engineer"

// San Diego, CA· ships end-to-end, then hardens it · open to new-grad & internship roles

LeoOS ready. Type help, explore with cd projects, or just scroll.

visitor@leonardo:~$

try cd projects · ls · cat argus.md · sudo · dance, or use the menu above

visitor@leonardo:~/projects$ ls -la

total 6

$ cat argus/README.md

# Argus

2026

> A hundred-eyed scanner for phishing links and malicious files.

A defensive analysis platform that vets suspicious links and files. It expands and de-obfuscates URLs, follows redirect chains, scores look-alike domains, and detonates files through signature, YARA, and heuristic scanning inside an isolated worker. Every check rolls up into an explainable verdict with evidence, surfaced through a Next.js dashboard and API.

## highlights

-Expands shortened / obfuscated URLs and follows full redirect chains
-Typosquat and look-alike domain detection against a brand watchlist
-Layered file scanning (signatures + YARA + heuristics) in an isolated worker
-Aggregates threat-intel into one explainable risk verdict, with evidence

## stackTypeScriptNext.jsNode.jsPythonYARADocker

visitor@leonardo:~$ man leonardo

LEONARDO(1)Engineer's ManualLEONARDO(1)

NAME

leonardo, a security-minded fullstack engineer

SYNOPSIS

leonardo [--fullstack] [--appsec] [--systems] <problem>

DESCRIPTION

Builds and ships end-to-end products, then breaks and hardens them. Comfortable across the whole stack, from React / Next.js interfaces down to C++ search and application-security tooling. Computer Science, based in San Diego, CA.

OPTIONS

--fullstackReact · Next.js · Node · REST APIs · data pipelines

--appsecURL & malware analysis · sandboxed detonation · threat intel

--systemsC++ · alpha-beta search · UCI · low-level rigor

EXAMPLES

$ leonardo --appsec "screen the unknown" # → argus

$ leonardo --fullstack "ship the product" # → statjack, mesa

$ leonardo --systems "make it fast" # → mr-henderson

AUTHOR

Written by Leonardo Nguyen.

Engineer's Manual2026LEONARDO(1)

visitor@leonardo:~$ nmap -sV -T4 leonardo

Starting Nmap 7.95 ( https://nmap.org )

Nmap scan report for leonardo (127.0.0.1)

Host is up (0.00031s latency). Not shown: 992 closed ports.

PORTSTATESERVICEVERSIONAPPLIED

22/tcpopensshalways-learning 4.xevery build

80/tcpopenhttpReact · Next.js · Tailwindstatjack, ko-rush

443/tcpopenhttpsTypeScript · Node · REST APIsargus, statjack

3000/tcpopenfullstackend-to-end product buildsmesa, statjack

8080/tcpopenappsecURL/file scanning · sandboxing · threat intelargus, tartarus

5432/tcpopendataSQL · pipelines · World Bank APIstatjack

9090/tcpopensystemsC++ · alpha-beta · UCImr-henderson

9229/tcpopenscriptingPython · automationargus, tooling

Service detection performed. 8 services up, host is online.

visitor@leonardo:~$ ./contact.sh

let's build something_

open to new-grad & internship roles, freelance builds, and anything where craft matters. the inbox is always open.

mail ▸github linkedin