Skip to content
View nikolap994's full-sized avatar
21 followers · 4 following

Achievements

Achievement: YOLOAchievement: Pull SharkAchievement: QuickdrawAchievement: Arctic Code Vault Contributor

Achievements

Achievement: YOLOAchievement: Pull SharkAchievement: QuickdrawAchievement: Arctic Code Vault Contributor

Block or report nikolap994

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
nikolap994/README.md

Nikola Pavlović

Software Development Manager · PhD in Blockchain & IoT Security · Security Tooling Engineer

Belgrade, Serbia — building open-source browser security tools that respect your privacy.

LinkedIn Dev.to Twitter

Research background

PhD thesis: "Increasing Security and Privacy by Integrating a Secure Blockchain Interface into IoT Architecture" — Singidunum University, Belgrade.

The core question: how do you build trustless, tamper-proof communication between constrained IoT devices without relying on a central authority? The Foil suite is a practical continuation of that work — applied to the browser layer.

What I'm building — Foil Security Suite

A protective layer between you and the threat.


FoilGuard
FoilGuard
🟢 Phase 1 · Active

Chrome extension that blocks domain impersonation before the page loads — typosquatting, homoglyphs, digit substitution, combosquatting. Enterprise MDM policy, audit log. No API key, nothing leaves the browser. 		FoilLab
FoilLab
🟡 Phase 2 · Building

Weekly network and IoT CTF challenge platform. Every challenge ships with a write-up — pcap analysis, firmware reversing, log forensics. 		FoilVault
FoilVault
🟣 Phase 3 · Planned

Zero-knowledge browser password manager. Blocks autofill on suspicious domains via FoilGuard integration — the only manager that checks before it fills.

Stack

TypeScript Node.js Astro Vite PostgreSQL Docker Linux

Currently

Submitting FoilGuard to the Chrome Web Store · Starting FoilLab CTF platform build

GitHub Stats    Top Languages

Open to collaboration on security tooling, IoT security research, CTF infrastructure and zero-knowledge systems.

Pinned Loading

  1. foilguard foilguard Public

    Chrome extension that blocks typosquatting, homoglyphs, and combosquatting attacks before the page loads. No API key, nothing leaves the browser.

    TypeScript

  2. foillab foillab Public

    Weekly network/IoT CTF challenge platform with write-ups and leaderboard. Covers pcap analysis, firmware reversing, and log forensics.

    Astro

  3. foilvault foilvault Public

    Zero-knowledge browser password manager. Checks domain risk via FoilGuard before every autofill — the only password manager that blocks credentials on suspicious domains.

    TypeScript

  4. crypto-marketplace crypto-marketplace Public

    Crypto-based marketplace MVP with escrow functionality. Platform charges a fee per transaction. Built for fast prototyping with full Docker, backend, and frontend setup.

    JavaScript 1

  5. feature-flags-service feature-flags-service Public

    A developer-focused SaaS for managing feature flags, environments, and targeting rules.

    JavaScript

  6. nodejs-cms nodejs-cms Public

    Boilerplate for simple CMS in NodeJS (NestJS)

    TypeScript