Research & Projects
Garrett works on cybersecurity, intelligence and policy projects that focus on practical security and clear public understanding. This page highlights current work, university projects and published briefs. New projects will be added as they are released.
-
This research examines how AI generated phishing interacts with centralized cloud systems in K through 12th grade environments.
The study introduces an identity cascade model, showing how a single compromised student account can provide access to multiple connected services such as email, cloud storage and learning platforms.
Findings show that AI generated phishing messages are significantly more realistic than traditional phishing, increasing the likelihood of credential compromise.
As well as provides practical recommendations, including stronger MFA adoption, reduced password reuse and improved monitoring of account behavior.
Watch a brief video explanation
Full paper available below
-
Core Focus Areas
• Cloud configuration review
• IAM security review
• Logging and monitoring analysis
• Hardening recommendations
• 30–60–90 remediation roadmap
This project is a simulated cloud security audit designed to identify risks and provide recommendations for how a university can strengthen its cloud environment. It reviews common configuration mistakes in Amazon Web Services and Google Cloud Platform, evaluates identity and access management weaknesses and offers practical steps universities can take to improve their security posture. The purpose of this project is to help students and schools understand how cloud audits are performed and how campuses can reduce risk. -
Built a Python tool that parses raw security logs and adds standardized labels, categories and context fields before export. Designed to integrate with Splunk and ELK pipelines to improve visibility, reduce noise and speed investigations. Enhanced readability for Tier 1 SOC analysts by enriching log data for triage, correlation and incident review.
-
A collection of short intelligence briefs written for Embry-Riddle’s Eagle Eye program. These pieces focus on cyber activity, regional dynamics and emerging AI-driven threats. Each brief is written to be clear, direct and useful for students and faculty who follow global security trends.
Ukraine: Russian Cyber Operations
Analyzed Russian cyber operations targeting Ukrainian government and private networks with a focus on stealthy intrusions, intelligence collection and long-term system access. The piece outlines 2025 trends in AI enabled activity and the continued pressure on Ukraine and its limited defensive resources.
Read the brief here
Indonesia–Vietnam: AI-Driven Cyberattacks
I assessed the rise of AI enabled cyberattacks targeting Indonesia and Vietnam, highlighting the strain on national defenses and public trust. The piece examines emerging phishing, malware and deepfake threats and outlines likely regional responses.
Read the brief here
-
EagleSat Program
Supporting payload development, testing and mission operations for EagleSat-2, a NASA Space Grant CubeSat researching memory reliability and system resilience in space environments. Assist with payload integration, system diagnostics and mission readiness activities alongside ERAU faculty and engineering teams. Contribute to data acquisition planning, test procedure development and technical documentation supporting NASA Space Grant research objectives.