❯ whoami

Jon Marien // chrono

CTO @ D-Sports · Security Researcher · Sheridan College

Cybersecurity grad building things at the intersection of sports, crypto, and code. CTO of D-Sports — a hockey-focused fan engagement platform with digital collectibles, leaderboards, and on-chain wallets. 100+ users across 3 countries.

I spend most of my time writing TypeScript, breaking things on TryHackMe and HackTheBox, co-organizing BearHacks, and running the ISSessions CTF at Sheridan. The alias has been chrono for years — it fits.

projects

D-Sports

Sports + blockchain fan engagement platform. Hockey-focused. Pack opening, digital collectibles, crypto wallets, global leaderboards. 100+ users, 3 countries.

TypeScript blockchain hockey

d-sports.org ↗

BearHacks Web Portals

Registration and admin portals for BearHacks 2026 — Sheridan College's hybrid hackathon. Actively in development.

TypeScript web

github ↗

Nexus C2

Python C2 framework. Encrypted agent comms (Fernet), Rich TUI operator console, multi-platform payload delivery (Windows/Linux/macOS), Gatekeeper bypass, screenshot/webcam capture, hardware fingerprinting, loot auto-save, Ghost VPN social-engineering landing page. Live at c2.chron0.tech.

Python security C2

c2.chron0.tech ↗

Automotive Security Capstone

RTL-SDR V4 + Raspberry Pi Pico W for real-time automotive RF/NFC security monitoring. Detects jamming, replay attacks, and brute force on wireless car entry. Rich CLI dashboard with session export.

Python security hardware

github ↗

Burpcord

BurpSuite extension for Discord rich presence. Shows your active scan target and state in your Discord status. Published to the PortSwigger BApp Store.

Java security BApp Store

bappstore ↗

security research

The 7-Zip Vulnerability Discovery — CVE-2024-11477

CVE 7-Zip MarkZipBook out-of-bounds write. Remote code execution via crafted archive.

PaperCut Authentication Bypass — CVE-2023-27350

CVE Unauthenticated RCE via the PaperCut NG/MF print management platform.

GameFreak Teraleak Analysis

ANALYSIS Source code leak post-mortem — what was exposed and what it reveals about game dev security.

Mr. Robot CTF — Writeup

CTF Full walkthrough: robots.txt recon, Hydra brute force, privilege escalation via SUID bit.

PortSwigger BSCP Labs

LABS Web security labs — SQLi, XSS, SSRF, access control, business logic flaws.

More writeups → Chrono's Cyber Chronicles

BLOG TryHackMe, HackTheBox, ISSessions CTF writeups — ongoing.

community

BearHacks 2025

Co-Chair

Co-organized Sheridan College's first-ever hybrid hackathon — 36 hours, 100+ participants, Hazel McCallion campus, March 2025. Now building the web portals for BearHacks 2026.

ISSessions CTF

Coordinator — ISS Club, Sheridan College

Runs the ISSessions cybersecurity competition series. Built and maintains the live scoreboard tool (CTFd API). Publishes challenge writeups at quartz.chron0.tech.

Canada DevOps Hackathon Toronto

Competitor — Team 1, November 2025

Built HemoStat — a health vitals monitoring and alert system — during a time-pressured hackathon environment.

contact

email jon@d-sports.org

github jondmarien

linkedin jondmarien

site chron0.link

blog quartz.chron0.tech

twitch sirchronoblaze