Increased Worker Pressure from AI
My latest depressing thought about AI is that with all the pressure to adopt AI and replace employees with automation,...
Read more →Category: Mix
Solving the challenges of a bug bounty program manager (BBPM). Strategic execution for security leaders.
As more organizations lean on third-party platforms, cloud infrastructure, and remote development teams, the attack surface grows, often faster than...
Read more →![[tl;dr sec] #290 - Securing MCP, AppSec Archetypes, CISO's Guide to Protecting Crown Jewels](https://cybernoz.com/wp-content/uploads/2025/07/tldr-sec-290-Securing-MCP-AppSec-Archetypes-CISOs-Guide.png "[tl;dr sec] #290 - Securing MCP, AppSec Archetypes, CISO's Guide to Protecting Crown Jewels 3")
[tl;dr sec] #290 – Securing MCP, AppSec Archetypes, CISO’s Guide to Protecting Crown Jewels
Tools to scan MCP servers and an MCP WAF, 4 AppSec archetypes, how to strategically protect your org with limited...
Read more →
Debunking API Security Myths
I recently sat down with Tejpal Garwhal, Application Security and DevSecOps Leader, for a conversation debunking some of the most...
Read more →
How to identify the origin IP
Most of your targets often resort to using content delivery networks (CDNs) or other anti-DDoS reverse proxies to mask their...
Read more →
Getting a Shell on the LAU-G150-C Optical Network Terminal
Optical Network Terminals (ONTs) are devices that convert fiber optic signals to Ethernet signals that can be handled by typical...
Read more →Self-Contained TypeScript Programs Using Bun
Bun’s auto-install feature If you hate Python as much as me it’s probably because of dependencies. Roughly 23-319% of the...
Read more →Building a Personal AI Infrastructure (PAI)
I have a bunch of ideas I want to share here, but let me first start with what I’m doing...
Read more →I Built a Claude Code Pop Menu Inside of Neovim
Kai: AI-powered coding in Neovim (click for full size) I use LazyVim, btw. lol I’ve been using AI to help...
Read more →
Search in Zola: Fuse.js vs. Elasticlunr.js
Comparing Fuse.js and Elasticlunr.js for Zola’s client-side search. Learn which library suits your static site’s needs. Zola is a fast...
Read more →
Remote Code Execution in Microsoft SharePoint (CVE-2025-53770) — API Security
On July 19, 2025, a critical remote code execution (RCE) vulnerability (CVE-2025-53770, also referred to as ToolShell) was publicly disclosed,...
Read more →AI Lets You Do Way More Stuff
When it comes to AI, people are often in one of two camps: They’re freaking out about AI and it’s...
Read more →