Skip to content
View texasbe2trill's full-sized avatar
🚀
Building systems that turn complex data into actionable insight.
🚀
Building systems that turn complex data into actionable insight.
15 followers · 40 following

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull Sharkx3Achievement: Public SponsorAchievement: YOLOAchievement: Quickdraw

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull Sharkx3Achievement: Public SponsorAchievement: YOLOAchievement: Quickdraw

Highlights

  • Pro

Block or report texasbe2trill

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
texasbe2trill/README.md

Chris Campbell

typing header

Real data. Measured outcomes. Shipped systems.

🎯 What I Do

I work at the intersection of security engineering and data science, building forensic automation, predictive models, then shipping them. Eight years of security domain knowledge feeding ML feature sets nobody else thinks to engineer. By day, a senior security engineer building Python automation and applied LLM workflows over high-volume operational data. Outside of work, I ship end-to-end data science and security projects with live deployments, reproducible pipelines, and test suites.

Currently exploring: regime-aware recalibration, context-aware security scanning, and LLM grounding for structured extraction.

🛡️ Security Engineering

Detection · Forensics · IR
Python automation · KQL · forensic analysis · Panther detection-as-code · CVE triage

📊 Data Science

R² 0.615 PRA holdout
Calibrated regressors · time-aware validation · regime-aware bundles · n_test 43K

🤖 Applied LLMs

4 pluggable backends
OpenAI · Anthropic · Hugging Face · local llama.cpp · IOC extraction & structured rationale

🚀 Featured Projects

🛡️ AlertSage: SOC Triage Console

Python · scikit-learn · sentence-transformers · Streamlit · LLMs · SQLite

Free-text security incident in, MITRE ATT&CK triage card out. A TF-IDF + sentence-transformer hybrid handles the fast first pass. An LLM (OpenAI, Anthropic, Hugging Face, or local llama.cpp) commits to the verdict and writes the rationale, with hallucination guardrails that downgrade to deterministic output when the model diverges from source.

8-class taxonomy · 13 MITRE ATT&CK tactics · SQLite case management · batch up to 500 rows

🏀 Hooplytics: NBA Analytics Platform

Python · scikit-learn · pandas · Streamlit · Sports APIs

End-to-end analytics platform for NBA player outcomes. 60+ leakage-safe features across rolling windows, role/matchup context, and rest effects. 8 calibrated regressors on a 215K-row chronological holdout. Regime-aware playoff bundle swap lifts PRA R² from 0.615 → 0.695 without retraining.

PRA R² 0.615 · n_train 172K · n_test 43K · automated promotion gate

📦 More Projects

🍎 macos-trust

Python · Typer CLI · SARIF 2.1.0 · Homebrew tap

Context-aware macOS security scanner. Identifies unsigned apps, Gatekeeper violations, and suspicious persistence mechanisms with smart vendor recognition. Entitlements auditing, browser extension analysis, baseline/diff mode, and SARIF output for GitHub Advanced Security.

59 passing tests · Homebrew tap · Privacy-first, read-only

📚 KoNotes

Python · Streamlit · LLMs · NLP

Local-first reading intelligence platform. Converts Kobo and Kindle annotations into structured, queryable insight with semantic theme clustering, similarity search, LLM chat integration, and rule-based recommendations.

571 tests · 20+ modules · 7-subcommand CLI

🛠️ Stack
ML / Modeling scikit-learn, classification, regression, calibration, time-aware validation, residual diagnostics, threshold tuning
Security domain detection-as-code (Panther), forensic automation, KQL, Snowflake SQL, macOS trust assessment
Applied AI LLM IOC extraction, incident classification, hallucination guardrails, multi-provider routing, AI-assisted case reporting
Python data stack Python, SQL, pandas, NumPy, statistical reasoning, EDA, reproducible Jupyter workflows
Delivery Streamlit dashboards, Typer CLIs, SARIF 2.1.0, JSON pipelines, joblib model artifacts, REST APIs

📊 GitHub

Pinned Loading

  1. AlertSage AlertSage Public

    Open-source SOC console. Free-text security incident in, MITRE ATT&CK triage card out. TF-IDF + sentence-transformer classifier, multi-provider LLM dispatch, IOC enrichment, and case management.

    Jupyter Notebook 4 2

  2. macos-trust macos-trust Public

    Intelligent macOS security scanner that identifies unsigned apps, Gatekeeper violations, and suspicious persistence mechanisms with context-aware risk assessment. No false positive fatigue.

    Python 2

  3. hooplytics hooplytics Public

    Hooplytics turns NBA box-score data into player intelligence through machine learning, interactive analytics, and visual workflows for exploring trends, projections, and performance signals.

    Jupyter Notebook 4

  4. KoNotes KoNotes Public

    Interactive reading dashboard and CLI for Kobo and Kindle — library stats, AI-powered insights, smart recommendations, book cover art, reading activity, annotation exports, and Bluesky sharing.

    Python 4 2