Skip to content
View madaster97's full-sized avatar
  • Epic Systems Corporation
  • Verona, WI

Block or report madaster97

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
madaster97/README.md

Adam Strickland (adamstrickland97@gmail.com)

Technical problem solver with expertise in web and native app security and networking protocols. Technologies I know:

I like to say that if it uses HTTP, I can hack it! I can quickly examine a network trace (for example, using Burp Suite) and understand how a web or native application ticks.

My Work

Applied Cryptography

  • Demonstrated how to sign Elliptic-Curve JWTs with the openssl CLI
  • Contributed JWT authentication functionality to an Openid Connect library

Authentication Systems

  • Contributed to a FIDO/WebAuthn library that bridges OpenSSH with Windows Hello
  • Identified a broken authentication issue in one of my company's integrations. I used my knowledge of crpytography to exploit an encryption system

RESTful Web Services

  • Updated the Swagger/OpenAPI spec for the CDS Hooks REST API
  • Implemented an example CDS Hooks service for my company's use in demos (hosted in pipedream)

CSRF Protection

  • Identified a login CSRF attack at my company, and prevented us from pushing the code to production
  • Added a CSRF protection example to an Openid Connect Library after a throrough conversation with library maintainers on the scope of CSRF attacks against the library

Session Management

  • Discovered and fixed an issue with an Openid Connect library, where sessions didn't work embedded in an iframe
  • Added testing for a feature of the express-session library

Popular repositories Loading

  1. openssl-jws openssl-jws Public

    JavaScript 3

  2. fhiruser-ui fhiruser-ui Public

    A UI for interacting with fhir servers starting from access token response payloads

    TypeScript 1

  3. api api Public

    Forked from cds-hooks/api

    CDS Hooks Swagger API

  4. puri-fhir puri-fhir Public

    A JS functional programming library for working with FHIR resources, based on the purify-ts library.

    TypeScript

  5. node-bulk-fhir node-bulk-fhir Public

    A nodejs client for the FHIR Bulk Data Access (Flat FHIR) profile

  6. argonaut-subscription-client-ui argonaut-subscription-client-ui Public

    Forked from microsoft-healthcare-madison/argonaut-subscription-client-ui

    Client UI for testing the Argonaut Subscription changes.

    TypeScript