Security insights, certification journeys, and lessons from the trenches.
PostCSS < 8.5.10 round-trips </style> through CSS string values untouched. Inline the output in a <style> block and the HTML tokenizer closes the tag early, turning a CSS value into a script element. Two parsers, one missing contract, 120M weekly downloads in the blast radius.
Read article →CVE-2026-39884 deep dive: how argument injection in mcp-server-kubernetes lets attackers expose internal Kubernetes services to the network, bypass namespace isolation, and weaponize AI agents, all through a single space in a kubectl port-forward resource name.
Read article →A storytelling breakdown of CVE-2026-39885: how a single $ref in a malicious OpenAPI spec exploits mcp-from-openapi to steal AWS credentials, read local files, and map internal networks — no authentication required.
Read article →How I built a GenAI-powered triage engine that enriches alerts from EDR, CSPM, AppSec, DNS, and vulnerability sources, runs analysis through Claude with MCP integrations, and posts structured triage reports — reducing triage time from 30 minutes to under 60 seconds.
Read article →Clearing the CISSP exam felt unreal, especially when it ended at 100 questions. This post documents the journey, resources, and the mindset needed for a hands-on engineer to succeed.
Read article →Preparing for a SOC Analyst interview can be daunting. This post covers key topics and tips to help you succeed in landing that security operations role.
Read article →Have you ever created a Google Cloud Container Registry (GCR) or migrated from GCR to Google Artifact Registry (GAR) and wondered how it performs its duties on your project?
Read article →My journey to becoming AWS Certified Security - Specialty began in January 2023 after successfully passing the AWS Certified Cloud Practitioner exam.
Read article →APIs have become a crucial part of modern software applications. Learn how fuzzing can uncover hidden vulnerabilities in REST APIs.
Read article →