Blog
Thoughts on tech projects, cybersecurity, infrastructure, and things I'm learning.
Browse by Topic
Weekly Digest
Get a weekly email with what I learned, summaries of new posts, and direct links. No spam, unsubscribe anytime.
Thoughts on tech projects, cybersecurity, infrastructure, and things I'm learning.
Get a weekly email with what I learned, summaries of new posts, and direct links. No spam, unsubscribe anytime.
A security professional audits his own code: blog posts leaking private repo names, query-string secrets in browser history, SSRF vectors, and error messages handing attackers the database schema. 19 findings and the journey to fix every one.