Expertise

Six domains. One engineer.

Each domain below is a discipline practised across multiple production projects — not a buzzword list. The depth, not the breadth, is what makes the result work.

WEB
Web frontends
Astro · TypeScript · Tailwind

Fast, accessible, server-rendered websites and web apps. Static-first where it fits, dynamic where it has to. SEO and i18n built in.

  • Astro 6 + Tailwind 4 stack
  • Multi-language (EN+DE mirror)
  • Component-driven design system
  • Lighthouse-clean by default
  • CMS-ready (Decap, Sanity, on demand)
API
Backend & APIs
Python · Node · PostgreSQL

Backend services from a single Flask script to a multi-tenant API. Built for explainable performance, clean migrations and operability — no surprise scaling cliffs.

  • Python (Flask, FastAPI) + Node
  • PostgreSQL, SQLite, MongoDB
  • REST + JSON, OpenAPI on demand
  • Background jobs, queues, schedulers
  • Observability and structured logs
APP
Custom software
Desktop · Domain-specific tooling

Bespoke applications where off-the-shelf software does not fit: data acquisition, instrument integration, signal processing, branch-specific tooling. Delphi (Master Developer certified), Python, .NET on request.

  • Hardware integration (USB, serial, IP)
  • Real-time data and signal processing
  • Domain-native UX and data structures
  • Long-term maintenance posture
  • Migration paths from legacy systems
OPS
Linux operations
Debian · nginx · ISPConfig · WireGuard

Production Linux clusters — web, mail, monitoring, backup. The same architecture that runs the ndtss infrastructure, available for your stack.

  • Two-host Debian clusters
  • nginx + ISPConfig hosting
  • Postfix + Dovecot with DKIM/SPF/DMARC
  • WireGuard mesh, restic backup
  • monit-based monitoring + alerting
AI
AI-assisted tooling
Claude Code · MCP · Knowledge Bases

Custom Model Context Protocol (MCP) servers and AI-augmented developer workflows. Not chatbots — real tooling that connects an LLM to your repos, data and operations.

  • Python MCP servers (tools tailored to your domain)
  • Knowledge-base design and crystallize workflow
  • Claude Code agent definitions
  • Repo automation and code-review augmentation
  • Cross-repo federation patterns
SEC
Security & hardening
SSH · firewall · backups · audits

Server hardening, code audits, dependency review, restore-tested backups. Small enough to ship in days, serious enough for production.

  • SSH + nftables baseline
  • fail2ban, unattended-upgrades
  • Off-site backup with restore test
  • Dependency and license audit
  • Code review against architecture principles

Let's talk about your project.

Tell me the task in two paragraphs. If a package fits, link it. Reply usually within 1–2 working days.

Packages Get in Touch