Skip to content
View nikolap994's full-sized avatar

Block or report nikolap994

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
nikolap994/README.md

Nikola Pavlović

Software Development Manager · PhD in Blockchain & IoT Security · Security Tooling Engineer

Belgrade, Serbia — building open-source security tools for detection, training, and protection.


Research background

PhD thesis: "Increasing Security and Privacy by Integrating a Secure Blockchain Interface into IoT Architecture" — Singidunum University, Belgrade.

The core question: how do you build trustless, tamper-proof communication between constrained IoT devices without relying on a central authority? The Foil suite is a practical continuation of that work — applied to the browser and network layer.


What I'm building — Foil Security Suite

A protective layer between you and the threat.

foilsuite.netlify.app


FoilGuard
FoilGuard
🟢 Phase 1 · Active v0.4


Chrome extension blocking domain impersonation before the page loads — typosquatting, homoglyphs, combosquatting, newly-registered domains. Enterprise MDM policy, audit log. No API key, nothing leaves the browser.
FoilLab
FoilLab
🟢 Phase 2 · Active


Network forensics CTF platform — DNS exfiltration, C2 beacon analysis, email spoofing, packet captures. Every challenge is based on a real attack pattern that FoilGuard defends against.
FoilVault
FoilVault
🟣 Phase 3 · Planned


Zero-knowledge browser password manager. Blocks autofill on suspicious domains via FoilGuard integration — the only manager that checks before it fills.

Pinned Loading

  1. foilguard foilguard Public

    Chrome extension that blocks typosquatting, homoglyphs, and combosquatting attacks before the page loads. No API key, nothing leaves the browser.

    TypeScript

  2. foilvault foilvault Public

    Zero-knowledge browser password manager. Checks domain risk via FoilGuard before every autofill — the only password manager that blocks credentials on suspicious domains.

    TypeScript

  3. foilsuite foilsuite Public

    Landing site for the Foil security tools suite — FoilGuard, FoilLab, FoilVault

    Astro

  4. crypto-marketplace crypto-marketplace Public

    Crypto-based marketplace MVP with escrow functionality. Platform charges a fee per transaction. Built for fast prototyping with full Docker, backend, and frontend setup.

    JavaScript 1

  5. feature-flags-service feature-flags-service Public

    A developer-focused SaaS for managing feature flags, environments, and targeting rules.

    JavaScript

  6. nodejs-cms nodejs-cms Public

    Boilerplate for simple CMS in NodeJS (NestJS)

    TypeScript