BLOGS

A collection of my thoughts and reflections on various topics.

• D-Bus Drifting For User-Land Persistence

  2025-04-21 research linux redteam
  In Linux systems with a desktop environment such as GNOME, a non-root user can write D-Bus configuration files that exec...
  READ [→]

• A Guide To Kubernetes Logs That Isn't A Vendor Pitch

  2024-06-01 kubernetes security
  A guide to kubernetes logging at each cluster layer with a focus on AuditPolicy.
  READ [→]

• The Certification Industrial Complex

  2024-01-22 security career
  The Certification Industrial Complex and other Cyber Education Embarrassments
  READ [→]

• Human Memory Management: Techniques For Actionable Security Research

  2023-10-11 security career
  How to utilize an atomic note taking system to effectively research new topics and advance your career.
  READ [→]

• An Excruciatingly Detailed Guide To SSH (But Only The Things I Actually Find Useful)

  2023-08-22 redteam ssh linux
  Oh you like SSH? Name every flag.
  READ [→]

• Zero Effort Private Key Compromise: Abusing SSH-Agent For Lateral Movement

  2023-08-18 redteam security linux ssh
  A walkthrough of compromising private keys in SSH-Agent for post-exploitation lateral movement shenanigans.
  READ [→]

• How I Got Hired On A Google Red Team

  2023-07-01 security redteam career
  A summary of all the information I learned while looking for new jobs and how I ended up getting hired on Google's red t...
  READ [→]

• My 2022 Security Year In Review

  2022-12-31 security personal
  Looking back on 2022 and looking forward into 2023: What I learned and what I hope to learn.
  READ [→]

• How To Setup Spotify-TUI and Spotifyd With Pulseaudio.

  2022-12-18 guide linux
  How to be a Linux elitist and play music from your T E R M I N A L
  READ [→]

• Wandering Vagrant: A Crash Course in Vagrant Virtual Machines

  2022-12-15 security guide research vagrant
  A crash course of all the disparate knowledge I wish I had when I first delved into Vagrant
  READ [→]

• A Guide To Doing Things

  2022-11-06 personal
  A collection of tips I use to focus on my most important tasks.
  READ [→]

• Do As I Say, Not As I Do: Should You Get A Master's Degree In CyberSecurity?

  2022-07-31 security school
  My thoughts on if you should get a masters degree in cybersecurity
  READ [→]

• Spoofing Youtube For Fun And Profit: An Examination Of Punycode For Phishing

  2022-01-30 security research phishing
  Exploring some of the interesting edge cases when it comes to buying domains with non-standard characters!
  READ [→]

• Thou Shall Not Snoop Our Searches - Searx Installation and Discussion

  2021-12-14 privacy guide research
  How to install and use Searx
  READ [→]