Harden First, Patch Less: The Economics of Secure DevSecOps Pipelines
Explores how using hardened images benefits security and the bottom line. Additionally, we explore how to implement them, from DIY approaches to vendor solutions.
Recent Articles
When Complexity Itself Becomes the Most Critical Risk
Exploring how complexity itself has emerged as a meta-risk that overshadows conventional cybersecurity threats.
See What Attackers See (Part II): Defining and Tracking An Inventory of Ephemeral Components
Learn how organizations can define and track an inventory of ephemeral technology components in containerized environments.
See What Attackers See: Validating the Security of Public Asset Inventories Using Free, Open-Source Tools
Learn how to ethically assess the thoroughness of public asset inventory practices using free, open-source tools like Nmap, Masscan, Amass, and Shodan.
DIY AI: Running an LLM On Any Standard Laptop For Free, Offline Use
Learn how to unlock the power of AI on your ordinary laptop - no subscriptions, no privacy concerns, and no fancy hardware required.
Cost-Effective Vulnerability Management in AWS
How to implement a comprehensive vulnerability management workflow in AWS for under $50,000
Building a Compliance Automation Pipeline in AWS For Less Than $5000
How to implement compliance-as-code in AWS using GitOps and automated security control validation
Investigating ProtonVPN's Persistence Mechanisms: A Security Deep Dive
Going down the rabbit hole while attempting to uninstall ProtonVPN - persistence mechanisms and security implications
Books
American Values
Join me on a journey across America, from eastern cities to western deserts, as I search for what's really valuable
Dancing With My Fate
An open-minded exploration of reality using Occam's razor and the scientific method