Random thoughts and #infosec ramblings for the information age
Recent Posts
- Feb 11, 2026 Ralph and Software Engineering
- Jun 17, 2025 The PostgreSQL Locking Trap That Killed Our Production API (and How We Fixed It)
- May 16, 2025 Sneaky Malware Hidden in Transitive Dependency of eslint-config-airbnb-compat
- May 10, 2025 Why Build Software Frameworks
- Aug 26, 2020 Extending The Value of Security Testing by Adopting Variant Analysis
- Aug 25, 2020 Kubernetes From an Attacker's Perspective
- Aug 25, 2020 A Peak Into the Past
- Aug 24, 2020 The Change - Towards The Next Phase
Projects
- vet — Open source software supply chain security tool
- pmg — Protect against open source software supply chain attacks
- gryph — Audit trail for AI coding agents and more
- xbom — xBOM generation using static code analysis
- code — Static code analysis framework written in Go
- OWASP Kubernetes Security Testing Guide — OWASP Kubernetes Security Testing Guide
- null Swachalit — Web app that powers https://null.co.in
- sane — Git repository structure validator
- wireplay — Network protocol fuzzing using TCP stream reassembly and replay
- mathiz — AI powered math playground