Skip to content
View nevinshine's full-sized avatar
:octocat:
Building Sentinel
:octocat:
Building Sentinel
8 followers · 11 following

Achievements

Achievement: Pair ExtraordinaireAchievement: YOLOAchievement: Pull SharkAchievement: Quickdraw

Achievements

Achievement: Pair ExtraordinaireAchievement: YOLOAchievement: Pull SharkAchievement: Quickdraw

Highlights

Block or report nevinshine

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
nevinshine/README.md

Nevin Shine @ fedora-lab

nevin@fedora-lab:~$ ./fetch_profile

===================================================================
 Hi, It's me Nevin...
===================================================================

[ WHOAMI ]

 Systems security student focused on bridging the "semantic gap"
 between compile-time intent and runtime enforcement.

 Specializing in deterministic, kernel-native defense architectures
 using eBPF, LLVM, and Linux Security Modules (LSM).

 Currently researching high-performance runtime enforcement by
 migrating legacy ptrace supervision into ring-0 eBPF-LSM engines
 to mitigate fileless malware and Living-off-the-Land attacks.

-------------------------------------------------------------------

[ ACTIVE RESEARCH SYSTEMS ]

 Sentinel-CC — Compiler-Kernel Trust Chain
 CORE   :: LLVM, C++, eBPF
 DESC   :: Policy-Carrying Code (PCC) architecture that cryptographically
          binds compiler-verified execution intent to kernel enforcement.
          Supports ASLR normalization via Map-of-Maps design.

 Sentinel Runtime — Kernel Intrusion Prevention
 CORE   :: C, eBPF LSM Hooks
 DESC   :: Host-based runtime defense system enforcing process lineage
          and syscall provenance to block fileless malware.

 Hyperion — Wire-Speed Network Containment
 CORE   :: C, eBPF XDP
 DESC   :: NIC-level firewall performing zero-copy packet filtering
          to disrupt command-and-control channels in real time.

 Telos Runtime — Agentic Security Architecture
 CORE   :: eBPF, Control Plane Design
 DESC   :: Research architecture correlating AI agent intent with
          kernel execution graphs for secure autonomous systems.

-------------------------------------------------------------------

[ TECHNICAL TOOLCHAIN ]

 LANGUAGES    :: C, C++, Rust, Python, x86 Assembly
 KERNEL       :: eBPF (LSM/XDP/TC), Linux Internals, Namespaces, cgroups
 NETWORK      :: TCP/IP Internals, Protobuf, gRPC
 DEBUGGING    :: GDB, bpftool, strace, perf, Wireshark

-------------------------------------------------------------------

[ CONNECT ]

 EMAIL        :: nevinshine05@outlook.com
 GITHUB       :: /nevinshine
 LINKEDIN     :: /in/nevin-shine-b403b932b
 LOCATION     :: Nürnberg, Germany / Kottayam, India
 PORTFOLIO    :: nevinshine.github.io/

===================================================================

nevin@fedora-lab:~$ uptime
 up 20y — building systems, still compiling.

Nevin Shine @ 2026

Pinned Loading

  1. sentinel-runtime sentinel-runtime Public template

    Runtime Malware Analysis Engine using Linux ptrace & Isolation Forests.

    C 1

  2. hyperion-xdp hyperion-xdp Public

    High-performance stateful network defense using eBPF/XDP. The Network Satellite for the Sentinel Runtime research system.

    C 4 1

  3. telos-runtime telos-runtime Public

    A closed-loop security runtime preventing "The Great Exfiltration" and Indirect Prompt Injection in Autonomous AI Agents.

    Python 1