zigstool
Developer & Security Researcher

I build things
people trust.

Full-stack web developer, Web3 engineer, and security researcher. I ship production code and find the bugs that kill protocols. Same brain, two directions.

JavaScript TypeScript Python Solidity Rust
About

Building at the edge of Web3.

I ship full-stack web applications, Web3 protocols, and smart contracts. My work ranges from SaaS dashboards and trading tools to DeFi integrations and on-chain automation.

On the security side, I hunt bugs in smart contracts and web applications — finding the vulnerabilities that automated scanners miss, then helping teams patch them before anyone else finds out.

Currently focused on freelance Web3 architecture, security audits, and building tools that actually get used.

50+Live projects
$600+Bounties earned
15+Technologies
4+Years building
Selected Work

Projects I've shipped.

PlatformFull-Stack

Star4Star

GitHub stars exchange platform. Users earn credits by starring repos, then spend them to get stars on their own projects. GitHub OAuth, credit system, real-time leaderboards.

Node.jsExpressEJSPostgreSQLOAuth
Live demo →
DashboardWeb3

YourPearl Calculator

Mining pool P/L dashboard. Compare Akoya vs Pearlhash pools side by side — hourly earnings, cost tracking, and real-time hashrate monitoring for PRL miners.

JavaScriptChart.jsREST APIVercel
Live demo →
ToolFintech

P2P Tracker

USDT P2P trading management tool. Tracks buy/sell sessions with smart FIFO cost-basis calculation, profit tracking per trade, and full session history.

ReactTypeScriptLocalStorageFIFO
Live demo →
SecurityResearch

Bug Bounty & Audits

Independent security research — smart contract audits, web pentesting, and DeFi protocol reviews. Paid findings on Superteam and StackUp hackathons.

SolidityBurp SuiteSlitherManual review
See bounties →
View more projects I've built →
Skills

Stack I work with.

Languages

  • JavaScript / TypeScript
  • Python
  • Solidity
  • Rust
  • Go

Web3

  • Smart Contracts
  • DeFi Protocols
  • Foundry / Hardhat
  • Ethers.js / viem
  • The Graph

Infrastructure

  • Node.js / Express
  • React / Next.js
  • Docker
  • PostgreSQL / Redis
  • AWS / Vercel / Cloudflare

Security

  • Smart Contract Audit
  • Web & API Pentesting
  • Exploit PoCs
  • Bug Bounty Reports
  • Recon / OSINT
Bug Bounties

Validated findings.

Nosana Builders Challenge: Agents 102

Identified and reported security issues in the Nosana AI agent framework during the Superteam bounty program. View listing →

$100
Hackathon

Hedera Hello Future: Ascension Hackathon 2025

Built and submitted a project for the Hedera blockchain hackathon on StackUp. Awarded for technical implementation and innovation. View event →

$500
Contact

Let's build something solid.

Open for freelance projects, security audits, Web3 development, and long-term collaborations.