Technical writeups on cybersecurity, Linux hardening, cloud infrastructure, and everything in between.
$ ls | wc -l → 7 posts
After commissioning industrial systems across multiple sites, I've seen firsthand how far the real world sits from IEC 62443. This is what poor OT security looks like when nobody's watching.
Quantum computers will break RSA-2048 and ECC-256 in hours once they're powerful enough. Here's what that means for the systems we secure today — and how to prepare before it's too late.
A practical look at the most dangerous attack vectors targeting Azure environments right now, mapped to the AZ-500 control domains — identity, network, data, and detection.
How cloud computing transformed from shared hosting on steroids into the distributed, multi-layered infrastructure that now runs critical national infrastructure — and what comes next.
From rootless containers and read-only filesystems to image scanning and Seccomp profiles — a practical checklist for production-grade Docker security.
A deep dive into Content Security Policy (CSP) — what it is, how to craft a strict policy, and how to audit it with browser DevTools and security scanners.
A step-by-step guide to hardening a fresh Ubuntu/Debian server — from SSH lockdown and firewall rules to kernel parameter tuning and audit logging.
$ grep -r "" — 0 matches found.
