Random thoughts and #infosec ramblings for the information age
> ls ./posts
- 2025-06-17 The PostgreSQL Locking Trap That Killed Our Production API (and How We Fixed It)
- 2025-05-16 Sneaky Malware Hidden in Transitive Dependency of eslint-config-airbnb-compat
- 2025-05-10 Why Build Software Frameworks
- 2020-08-26 Extending The Value of Security Testing by Adopting Variant Analysis
- 2020-08-25 Kubernetes From an Attacker's Perspective
- 2020-08-25 A Peak Into the Past
- 2020-08-24 The Change - Towards The Next Phase
> cat projects.json
- vet -- Open source software supply chain security tool
- pmg -- Protect against open source software supply chain attacks
- gryph -- Audit trail for AI coding agents and more
- xbom -- xBOM generation using static code analysis
- code -- Staic code analysis framework written in Go
- OWASP Kubernetes Security Testing Guide -- OWASP Kubernetes Security Testing Guide
- null Swachalit -- Web app that powers https://null.co.in
- sane -- Git repository structure validator
- wireplay -- Network protocol fuzzing using TCP stream reassembly and replay