Skip to main content
System Online · Castle Hill, NSW

Mohammad Raouf Abedini

CYBER

Research

"Seek, and ye shall find" — Matthew 7:7Independently discovering, validating, and responsibly disclosing cross-platform vulnerabilities. Authored “The Invisible Window” — 100% screen capture evasion. Motivated by reducing catastrophic risks from advanced AI.

Anthropic AI EvaluatorVulnerability ResearcherMacquarie University · Nov 2026
View Projects Resume
Scroll
SYSTEM ONLINEAI SECURITY RESEARCHVULNERABILITY RESEARCHRESPONSIBLE DISCLOSURECROSS-PLATFORM EXPLOIT DEVELOPMENTLLM SECURITY EVALUATIONAI SAFETYANTHROPIC AI EVALUATORPYTHON & SYSTEMS PROGRAMMINGREDUCING CATASTROPHIC AI RISKSTHE INVISIBLE WINDOW70+ PROJECTS SHIPPEDOFFENSIVE SECURITYDUAL-USE RISK ASSESSMENTCASTLE HILL · NSW · AUSYSTEM ONLINEAI SECURITY RESEARCHVULNERABILITY RESEARCHRESPONSIBLE DISCLOSURECROSS-PLATFORM EXPLOIT DEVELOPMENTLLM SECURITY EVALUATIONAI SAFETYANTHROPIC AI EVALUATORPYTHON & SYSTEMS PROGRAMMINGREDUCING CATASTROPHIC AI RISKSTHE INVISIBLE WINDOW70+ PROJECTS SHIPPEDOFFENSIVE SECURITYDUAL-USE RISK ASSESSMENTCASTLE HILL · NSW · AU

Deployed Systems

Projects

[OPS] OFFENSIVE
PEER-REVIEWED PAPER2026

Invisible Window Research

Peer-reviewed security research exposing a critical vulnerability in browser-based exam proctoring. 100% evasion on Windows 10/11 and macOS using documented OS display APIs. Responsibly disclosed to vendors.

Security ResearchWindowsmacOSWebRTCResponsible DisclosurePoC
RepoCase Study
[SEC] DEFENSIVE2024

Mehr Guard

Privacy-first offline QR & URL security scanner built with Kotlin Multiplatform. 100% offline analysis with 5 platform targets.

KMPSecurity ToolAndroidiOSDesktopWeb
Demo RepoCase Study
[SYS] ENGINEERING2026

Syllabus-Sync

AI-native Campus OS transforming university PDF syllabi into structured, agent-readable data. Full student operations suite with 503 tests across 92 files.

Next.js 16SupabaseTypeScriptAI/LLM
Repo
[SYS] ENGINEERING2024

GitSwitch

AI-powered Git client for managing multiple identities and generating semantic commits. Built with Electron and React.

ElectronReactTypeScriptAI
Repo
[SYS] ENGINEERING2026

Nexus Archive

Cyberpunk-styled personal media vault with React frontend, Litestar API, and Supabase auth. AI-assisted recommendations, encrypted takeaways, and hardened cookie-based auth.

ReactPythonLitestarSupabase
Repo
[SYS] ENGINEERING2026

NanoMatch

High-performance limit order book and matching engine in C++20. Processing 1M+ orders/second with sub-microsecond latency.

C++20CMakeGoogle TestHFT
Repo
[SEC] DEFENSIVE2026

SentinelFlow

Real-time network intrusion detection system in C++17. Layered protocol dissection, Snort-inspired rule engine, and stateful threat detection parsing 500K+ packets/second.

C++17libpcapIDSNetwork Security
Repo
[SYS] ENGINEERING2026

SimurghForge

Universal file converter for macOS. 49 formats across images, documents, audio, video, and data — powered by 9 conversion engines. Zero cloud, single .app bundle.

Tauri v2RustReactTypeScriptFFmpegmacOS
RepoCase Study
[SYS] ENGINEERING2026

Aion

AI-powered Bible companion using Hybrid RAG. Keyword + semantic vector search (pgvector), real-time SSE streaming via Gemini, and cross-platform support with Tauri v2.

React NativeExpoSupabasepgvector
Repo
[OPS] OFFENSIVE2025

eBPF Cloud Runtime Security Monitor

Synthetic, read-only runtime visibility stack combining kernel eBPF, Go agent, and React dashboard. Educational runtime monitor.

eBPFGoReactKernelRuntime Security

Security Posture

  • Read-only introspection (no kernel writes)
  • Metadata only (no payloads/secrets)
  • Least privilege (BPF/SYS_ADMIN caps only)
  • Safe synthetic simulations
Repo

Operating Principles

Philosophy

B

RESEARCH

Independently discover, validate, and responsibly disclose vulnerabilities. Measure AI capability uplift, characterise safety boundaries, and publish reproducible findings.

  • + Vulnerability Research & Disclosure
  • + AI Safety & LLM Evaluation
  • + Dual-Use Risk Assessment
S

SECURE

Defensive applications that reduce real-world risk. Cross-platform exploit development informs better defences — offensive knowledge applied to protective systems.

  • + Cross-Platform Exploit Development
  • + Responsible Disclosure (OWASP/FIRST/CISA)
  • + Defensive Applications
THE_LAB/ active_operations

Hands-on vulnerability research and AI safety experimentation. Current work: cross-platform exploit development, AI capability uplift measurement, and safety boundary characterisation.

Vulnerability ResearchAI SafetyExploit DevelopmentResponsible Disclosure
ENTER_LAB

Technical Writing

Write-ups