My First Post
IntroductionAn introduction to my blogging journey and what to expect from this space.
Blog & Writings
Security insights, technical deep dives, and learning journeys from the frontlines of cybersecurity
Technology Today
Tech InsightsExploring current trends and developments in the technology landscape.
APIs: Friend or Foe
API SecurityExploring the dual nature of APIs - from seamless data exchange to potential weaponization in cybersecurity. A deep dive into Windows API, memory manipulation, and API hooking techniques.
OSINT Techniques for Web, API, Cloud, and Mobile
Security ResearchPractical OSINT techniques for penetration testing across multiple domains - from web reconnaissance to cloud identity attacks and mobile app analysis.
CWL Cloud Breaker — SSRF to EC2 Role Impact
Cloud SecurityRedacted full-depth lab report: SSRF vulnerability in EC2-hosted web app leading to IAM role credential disclosure and cloud identity compromise.
Sneaky Shellcode Shenanigans: Windows Defender-Dodging Loader
Malware ResearchDeep dive into fileless shellcode loader evasion techniques - complete technical breakdown with obfuscation, API hashing, and syscall injection.
I Took a Hacking Course So I Decided to Hack
API SecurityAPISEC UNI course review and VAPI hacking walkthrough - conquering OWASP Top 10 API vulnerabilities from IDOR to SQL injection.
I HACKED A BANK: 17 Critical Vulnerabilities
Penetration TestingTwo-part series: SQL injection, privilege escalation, and 15 other vulnerabilities that would let attackers own a banking operation.