Skip to content
View luisassardo's full-sized avatar
🫥
🫥

Block or report luisassardo

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
luisassardo/README.md

Luis Assardo

Guatemalan journalist and developer — I build security & privacy tools for journalists and human rights defenders.

Based in Germany. I work where investigative journalism meets digital security: researching digital threats and hostile environments, and building the defensive tooling that helps reporters and defenders stay safe. Most of what I ship runs entirely client-side or offline, with no accounts and no telemetry.


What I build

Project What it does Stack Live
apipass Encrypted vault for API keys & secrets — 100% in-browser (AES-256-GCM + Argon2id), also a signed macOS app Web Crypto · Tauri/Rust apipass.c-lab.tools
computer-check Read-only macOS security self-check — plain-language report, encrypted local history, zero telemetry Tauri · Rust · Python desktop app
hashcheck Verify file integrity by hash, entirely in your browser — no uploads, no backend JavaScript · Web Crypto hashcheck.c-lab.tools
GovScan Passive scanner that audits & grades government websites (SSL/TLS + security headers) Python govscan.j-lab.tools
cartas-a-desconocidos Anonymous handwritten-letter exchange Node.js · Docker cartasadesconocidos.com
noir Dark, minimal Ghost CMS theme CSS noir.quicktheme.online

Focus areas

  • Digital security for high-risk users — threat modeling, device hardening, and self-assessment tooling for journalists and human rights defenders
  • OSINT & investigations — open-source research supporting accountability journalism
  • Privacy-first engineering — client-side cryptography, offline-first, no-telemetry design

Elsewhere

Website LinkedIn X

Popular repositories Loading

  1. GovScan GovScan Public

    Passive scanner that audits & grades government websites on SSL/TLS and HTTP security headers. Built for investigative journalism.

    Python 1

  2. TGcollector TGcollector Public

    Forked from ahuseyn/TGcollector

    Web GUI for collecting messages from Telegram channels

    JavaScript

  3. monetization-tool monetization-tool Public

    Dashboard for exploring Meta monetization archive data.

    HTML

  4. noir noir Public

    Dark, minimal Ghost CMS theme — MIT licensed.

    CSS

  5. cartas-a-desconocidos cartas-a-desconocidos Public

    Sistema de intercambio de cartas escritas a mano de forma anónima.

    JavaScript

  6. luisassardo luisassardo Public