Cybersecurity • Developer • Educator
Building secure systems.
Sharing real knowledge.
Cybersecurity, software, infrastructure, and AI explained from the field.
Featured Content
Latest articles and projects
A snapshot of recent writing and active builds.
Latest Articles
View all articlesCVE-2026-10520: Critical Pre-Auth RCE in Ivanti Sentry (CVSS 10.0)
9 min read
CVE-2026-42271: Command Injection in LiteLLM via MCP Server Preview Endpoints
8 min read
CVE-2026-48027: Malicious Version of Nx Console, Credential Theft, and a Postmortem Worth Reading
9 min read
Have a question about security, tech, or my articles?
Ask Hermes, my AI assistant.
Writing
Latest Articles
Field notes, tutorials, news, and threat research from the world of security and tech.
Lazarus Group Targets Crypto Infrastructure in New Campaign
A field-level look at Lazarus Group, the North Korean state-sponsored threat actor behind some of the largest cyber heists on record. Background, observed TTPs, the major public incidents, and what defenders can actually do about it.
Understanding OAuth 2.0 Security Best Practices
OAuth 2.0 is the backbone of modern delegated authorization, but the spec is large and the failure modes are subtle. The grant types that matter, the token storage decisions that actually keep you safe, the scope designs that survive the test of time, and the operational practices that catch the rest.
Phishing-Resistant MFA and WebAuthn: The Practical Choices That Actually Stop Account Takeover
Push-based MFA and SMS one-time passwords are vulnerable to phishing and push fatigue. FIDO2 / WebAuthn with hardware-backed credentials is the standard that holds up. What phishing-resistant MFA actually means, how WebAuthn works, where the failure modes still are, and how to roll it out without breaking everything.
Builds
Featured Projects
Things I build to solve problems, automate workflows, and help others learn.
AXIOM
Security operations and infrastructure visibility platform.