-
Notifications
You must be signed in to change notification settings - Fork 0
/
index.html
325 lines (283 loc) Β· 16.5 KB
/
index.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
<!DOCTYPE HTML>
<html>
<head>
<title>TarcΓsio Marinho</title>
<meta charset="utf-8" />
<link rel="shortcut icon" type="image/png" href="my/favicon.ico"/>
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />
<link rel="stylesheet" href="assets/css/main.css" />
<noscript><link rel="stylesheet" href="assets/css/noscript.css" /></noscript>
</head>
<body class="is-preload">
<!-- Page Wrapper -->
<div id="page-wrapper">
<!-- Header -->
<header id="header" class="alt">
<h1><a href="index.html">TarcΓsio Marinho</a></h1>
<nav>
</nav>
</header>
<!-- Banner -->
<section id="banner">
<div class="inner">
<div class="logo icon image"><span class="image"><img src="my/me.png" width="300" height="300" class="foto"></span></div>
<h2>TarcΓsio Marinho</h2>
<p>Experienced Software Engineer with a background in developing, scaling, architecting, securing, and maintaining large-scale web applications, microservices, and APIs in a highly critical environment, serving millions of users daily, for the financial, fraud, and security sectors.</p>
</div>
</section>
<!-- Blog posts -->
<div class="wrapper alt style1">
<div class="inner">
<h2 class="major">Experience</h2>
<section class="features">
<!-- 1-->
<article>
<h3 class="major">πΊπΈ Dub - dub and replicate, anyone's investment portfolio</h3>
<p><b>Senior Software Engineer. (Dec/22 - Present)</b></p>
<p>βΆ Building the next big thing in finance.</p>
<p>βΆ Made the stocks charts and prices resilient and real time by decreasing the processing time.</p>
<a href="https://www.dubapp.com/" target="_blank" class="special">Website</a>
</article>
<!-- 2-->
<article>
<h3 class="major">π§π· Legiti - Fighting digital payment fraud at e-commerces</h3>
<p><b>Senior Software Engineer. (May/22 - Dec/22)</b></p>
<p>βΆ Handled +100 transactions per second (TPS) concurrently by developing a Python-Kinesis-Kubernetes consumer library. </p>
<p>βΆ Decreased the processing time by 15x from several microservices by rewriting the application in Golang</p>
<p>βΆ Decreased 10x the CI/CD pipelines build time by caching Docker container dependencies</p>
<p>βΆ Improved services architecture by implementing Clean Architecture and design patterns</p>
<p></p>
<p>Worked mainly with legiti's core platform, responsible for large-scale data ingestion. Responsible for the increase in its scalability and consistency maintaining the services with low latency.</p>
<p>
<a href="https://www.legiti.com/en/" target="_blank" class="special">Website</a>
</article>
<!-- 3-->
<article>
<h3 class="major">π΅πΉ Feedzai - Real-time fraudulent payment transactions identification</h3>
<p><b>Senior Software Engineer. (Nov/21 - May/22)</b></p>
<p>βΆ Developed new use cases for fraud prevention for our clients (major banks in Brazil) to prevent several frauds in Credit card Issuing, Account Opening, and Credit Card transactions.</p>
<p>βΆ Helped to increase the NPS for the LATAM region by 20% </p>
<a href="https://feedzai.com/" target="_blank" class="special">Website</a>
</article>
<!-- 4-->
<article>
<h3 class="major">π§π· XP - Investment management company</h3>
<p><b>Senior Software Engineer. (May/20 - Nov/21)</b></p>
<p>βΆ Build and architected the facial recognition system that authorizes +100K transactions daily, across several critical business transactions in the Bank, such as PIX (Brazilian Instant payment method), Digital Account (onboarding, account management), and Credit Card (Issuing credit cards, password reset).
<p></p>
<p>Worked developing highly scalable, resilient, and secure APIs for Fraud Prevention, Anti Money Laundering (AML), Authentication, and Authorization to assure security within the entire company and provide security to our +3MM customers. Ensuring code maintainability, quality, and stability with the unit, integrated, and load testing, with a fast development cycle using CI/CD.</p>
<a href="https://www.xpi.com.br/" target="_blank" class="special">Website</a>
</article>
</section>
</div>
</div>
<div class="wrapper alt style2">
<div class="inner">
<h2 class="major">Projects</h2>
<section id="two" class="wrapper alt spotlight style1">
<div class="inner">
<a class="image"><img src="my/programming.jpg" width="300" height="320" alt="" /></a>
<div class="content">
<h2 class="major">
π₯ A Deep Learning Approach to (WAF) - <br>
Web Application Firewall</h2>
<p><br> Web applications receives a variety of input parameters from users and attackers which generally inject malicious payloads trying to whether steal data or manipulate the application on their favor.
An approach widely used to protect the application is the WAF (web application firewall), which generally is rule based. In the present work, deep learning and Transformer, which is a state-of-the-art model in natural language processing, are applied in the scenario of hard-coded rules, successfully evading anti-WAF techniques. The proposed method achieves 96.5% accuracy in the proposed dataset.</p>
<a href="https://medium.com/@tarcisioma/a-deep-learning-approach-to-web-application-firewall-c6190a9bd31a" target="_blank" class="special">Blog post</a>
<a href="https://github.com/tarcisio-marinho/A-Deep-Learning-Approach-to-Web-Application-Firewall" target="_blank" class="special">Code</a>
</div>
</div>
</section>
<!-- GonnaCry -->
<section id="one" class="wrapper spotlight style2">
<div class="inner">
<a class="image"><img src="my/gonnacry.jpg" width="300" height="320" alt="" /></a>
<div class="content">
<h2 class="major">πΎ GonnaCry - A Linux Ransomware (malware)</h2>
<p>
<br>Code behind these Medium blog posts:
<br>- Ransomware encryption techniques
<br>- How can malware encrypt a company's existence
<br>
<br>GonnaCry is an academic Linux ransomware made for awareness about security/cryptography.
<br>It encrypts all the user files with a strong encryption scheme (RSA 2048 bits, AES 256 bits, SHA256).
</p>
<a href="https://medium.com/@tarcisioma/ransomware-encryption-techniques-696531d07bb9" target="_blank" class="special">Ransomware encryption techniques</a>
<a href="https://medium.com/@tarcisioma/how-can-a-malware-encrypt-a-company-existence-c7ed584f66b3" target="_blank" class="special">How can malware encrypt a company's existence</a>
<a href="https://github.com/tarcisio-marinho/GonnaCry" target="_blank" class="special">Code</a>
</div>
</div>
</section>
<!-- ECV -->
<section id="two" class="wrapper alt spotlight style3">
<div class="inner">
<a class="image"><img src="my/ransomware.jpg" width="300" height="320" alt="" /></a>
<div class="content">
<h2 class="major">π RSA - Encryption algorithm implementation</h2>
<p><strong></strong> <br>Code behind the Medium: <a href="https://medium.com/@tarcisioma/algoritmo-de-criptografia-assim%C3%A9trica-rsa-c6254a3c7042">RSA encryption algorithm</a>
<br>Simple implementation of the RSA Asymmetric Encryption Algorithm
</p>
<a href="https://medium.com/@tarcisioma/algoritmo-de-criptografia-assim%C3%A9trica-rsa-c6254a3c7042" target="_blank" class="special">Blog Post</a>
<a href="https://github.com/tarcisio-marinho/RSA" target="_blank" class="special">Code</a>
</div>
</div>
</section>
<!-- Bitbox -->
<section id="three" class="wrapper spotlight style4">
<div class="inner">
<a class="image"><img src="my/pass.jpg" width="300" height="320" alt="" /></a>
<div class="content">
<h2 class="major">π Bitbox - password generator</h2>
<p><strong>Bitbox</strong> is a strong password generator, using the diceware technique.</br>
The process of generating a password generally involves the usage of personal information, such as names and dates, being vulnerable to social engineering.</br>
Bitbox generates strong and easy to remember passwords.</br>Password example: <code>keys went apes front dirt palm</code></p>
<a href="https://github.com/tarcisio-marinho/bitbox" target="_blank" class="special">Github</a>
</div>
</div>
</section>
</div>
</div>
<!-- Blog posts -->
<div class="wrapper alt style1">
<div class="inner">
<h2 class="major">Blog Posts</h2>
<section class="features">
<!-- 1-->
<article>
<h3 class="major">π₯ Using machine learning to identify API attacks</h3>
<p>In this blog post I propose the usage of machine learning to identify the anatomy of API attacks, therefore, protecting our API from several types of attacks.</p>
<a href="https://medium.com/@tarcisioma/a-deep-learning-approach-to-web-application-firewall-c6190a9bd31a" target="_blank" class="special">Read</a>
</article>
<!-- 2-->
<article>
<h3 class="major">πΎ Ransomware encryption techniques</h3>
<p>Ransomware use a lot of encryption, using both symmetrical and asymmetrical cryptography, for file and keys encryption.
In this blog post I talk about the encryptions schemes and some ransomware vulneraiblities.</p>
<a href="https://medium.com/@tarcisioma/ransomware-encryption-techniques-696531d07bb9" target="_blank" class="special">Read</a>
</article>
<!-- 3-->
<article>
<h3 class="major">π€ How can a malware encrypt a company existence ?</h3>
<p>In this blog post I analyze how ransomware behaviours when attacking and destroying companies, and its impacts on industry.
Also explain how criminals don' t get caught after cyber crimes.</p>
<a href="https://medium.com/@tarcisioma/how-can-a-malware-encrypt-a-company-existence-c7ed584f66b3" target="_blank" class="special">Read</a>
</article>
<!-- 4-->
<article>
<h3 class="major">π RSA asymmetric encryption algorithm</h3>
<p>How RSA algorithm works and the math behind it's encryption power, explained.</p>
<a href="https://medium.com/@tarcisioma/algoritmo-de-criptografia-assim%C3%A9trica-rsa-c6254a3c7042" target="_blank" class="special">Read</a>
</article>
</section>
</div>
</div>
<div class="wrapper style3">
<div class="inner">
<section>
<h2 class="major">Talks</h2>
<div class="table-wrapper">
<table>
<thead>
<tr>
<th>Name</th>
<th>Description</th>
<th>Slides</th>
<th>Date</th>
</tr>
</thead>
<tbody>
<tr>
<td>Identifying attacks with Machine Learning</td>
<td>at IA PE Group</td>
<td><a href="https://docs.google.com/presentation/d/1r10RhTeCBD33SpTCRkO0opVpG1Ec5hIvh5Q7FZ5Kh8M/edit?usp=sharing" target="_blank">Link</a></td>
<td>Feb/2020</td>
</tr>
<tr>
<td>Securing your web application</td>
<td>at Geek Night Recife</td>
<td><a href="https://geeknightrecife.github.io/" target="_blank">Link</a></td>
<td>Dec/2019</td>
</tr>
<tr>
<td>Securing Python APIs</td>
<td>at PyJamas</td>
<td><a href="https://www.youtube.com/watch?v=fnbXXAWyoJA" target="_blank">Link</a></td>
<td>Dec/2019</td>
</tr><tr>
<td>Ransomware Internals</td>
<td>at Python Users Group (PUG-PE)</td>
<td><a href="https://docs.google.com/presentation/d/18luT5dffM1FPxFTTHGClEFWuoe0D2RODEZSyGZo9y-U/edit?usp=sharing" target="_blank">Link</a></td>
<td>Sep/2019</td>
</tr><tr>
<td>Python to Data Science</td>
<td>during Computer Week at UNICAP</td>
<td><a href="https://docs.google.com/presentation/d/1TE-Fcxb_88ppnLzwHlZFFiCSJJNmMjMGaoG95KwlPkk/edit?usp=sharing" target="_blank">Link</a></td>
<td>May/2019</td>
</tr><tr>
<td>Secure Web Development</td>
<td>at Python Users Group (PUG-PE)</td>
<td><a href="https://docs.google.com/presentation/d/1WnZ2olsZQXxuIS6tkkWP_dWvAx8vpDzjNJG4Xkxc6Po/edit?usp=sharing" target="_blank">Link</a></td>
<td>Apr/2019</td>
</tr><tr>
<td>Malware development with Python</td>
<td>at Python Users Group (PUG-PE)</td>
<td><a href="https://github.com/tarcisio-marinho/malware-dev" target="_blank">Link</a></td>
<td>Dec/2018</td>
</tr><tr>
<td>Introduction to Python</td>
<td>during Computer Week at UNICAP</td>
<td><a href="https://github.com/tarcisio-marinho/Minicurso-Python" target="_blank">Link</a></td>
<td>May/2018</td>
</tr>
</tbody>
</table>
</div>
</section>
</div>
</div>
<div class="wrapper alt style1">
<div class="inner">
<section>
<h2 class="major">Photos</h2>
<div class="box alt">
<div class="row gtr-uniform">
<div class="col-12"><span class="image fit"><img src="my/5.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/1.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/2.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/21.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/9.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/20.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/3.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/6.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/17.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/16.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/8.jpg" alt="" /></span></div>
<div class="col-6"><span class="image fit"><img src="my/11.jpg" alt="" /></span></div>
</div>
</div>
</section>
</div>
</div>
</section>
<!-- Footer -->
<section id="footer">
<div class="inner">
<h2 class="major">Get in touch</h2>
<ul class="contact">
<li class="icon brands fa-instagram"><a href="https://www.instagram.com/tarcisio.ma/"target="_blank">@tarcisiomarinh</a></li>
<li class="icon brands fa-github"><a href="https://github.com/tarcisio-marinho"target="_blank">tarcisio-marinho</a></li>
<li class="icon brands fa-medium"><a href="https://medium.com/@tarcisioma"target="_blank">@tarcisioma</a></li>
<li class="icon brands fa-linkedin"><a href="https://www.linkedin.com/in/tarcisio-marinho"target="_blank">tarcisio-marinho</a></li>
</ul>
</div>
</section>
</div>
<!-- Scripts -->
<script src="assets/js/jquery.min.js"></script>
<script src="assets/js/jquery.scrollex.min.js"></script>
<script src="assets/js/browser.min.js"></script>
<script src="assets/js/breakpoints.min.js"></script>
<script src="assets/js/util.js"></script>
<script src="assets/js/main.js"></script>
</body>
</html>