A few days ago, a fascinating article started making the rounds on X (Twitter) by security researcher @Harrris0n. The premise was simple but striking: Waze’s

January 24th 2026. It seems like a good time for my first blog post of the year. Even though this is the first blog post

Yesterday I walked through mapping a Synology share and pointing qgrep at breach data so the index lives next to the dataset instead of cluttering

If you’ve ever pointed a search tool at a giant dataset on a NAS and watched it spray indexes into your user profile… this one’s

In yesterday’s blog post, I mentioned having the opportunity—and honestly, the honor—of sitting down with David Bombal at Black Hat last week and speaking to

Getting ready to share another update from my recent Black Hat conference experience. I’ve spoken at Black Hat a few times over the past several

Hey everyone! I’ve been remiss over the past month – a little over a month, actually – in updating this blog. It’s not that I

Anyone who’s read my blog or watched my videos knows how much I love Cursor. I’ve been using AI to help me write code basically

One thing I say often is “If you see something interesting, grab a copy of it, because it may not be there tomorrow.” Links rot,

(Kali Linux & Ubuntu, Passive + Active Recon, API Keys, Logging & More) OWASP’s Amass is a fantastic tool, but unfortunately, its documentation is lagging

Another update is I got accepted to present at Black Hat Arsenal in Las Vegas this year, which I’m super excited about! If you’re not

In my last post several weeks ago, I stated that I was on a cruise and was planning on taking a short break from blogging.