CI/CD

Hacking CI/CD Pipelines: Part 1 Overview

Part one of Hacking CI/CD Pipelines, providing the background and basics to one of my security obsessions.

Read more

Conferences

Security Conference Lurker

Where's Wakeward?

Read more

Consultancy

Useful Consultancy Equipment

Equipment I've found useful consulting on-site and remotely

Read more

GitHub

Red Teaming GitHub: Part 3 VSCode Extensions and Tasks

Part three of Red Teaming GitHub, I go through my research in VSCode Extensions and cover how adversaries abuse VSCode Tasks

Read more

Red Teaming GitHub: Part 2 GitHub CLI

Part two of Red Teaming GitHub, in this post I cover how an adversary can abuse the GitHub CLI.

Read more

Red Teaming GitHub: Part 1 Attack Surface

Part one of Red Teaming GitHub, in this post I cover the attack surface and different threats to the service.

Read more

Kubernetes

Kubernetes RBAC - Tips and Tricks

Tips and tricks to master Kubernetes RBAC

Read more

Life Hacks

Useful Consultancy Equipment

Equipment I've found useful consulting on-site and remotely

Read more

Battling with Burnout

The four things I use to battle burnout.

Read more

Red Team

Red Teaming GitHub: Part 3 VSCode Extensions and Tasks

Part three of Red Teaming GitHub, I go through my research in VSCode Extensions and cover how adversaries abuse VSCode Tasks

Read more

Red Teaming GitHub: Part 2 GitHub CLI

Part two of Red Teaming GitHub, in this post I cover how an adversary can abuse the GitHub CLI.

Read more

Red Teaming GitHub: Part 1 Attack Surface

Part one of Red Teaming GitHub, in this post I cover the attack surface and different threats to the service.

Read more

Security

Hacking CI/CD Pipelines: Part 1 Overview

Part one of Hacking CI/CD Pipelines, providing the background and basics to one of my security obsessions.

Read more

Security Conference Lurker

Where's Wakeward?

Read more

Red Teaming GitHub: Part 3 VSCode Extensions and Tasks

Part three of Red Teaming GitHub, I go through my research in VSCode Extensions and cover how adversaries abuse VSCode Tasks

Read more

Red Teaming GitHub: Part 2 GitHub CLI

Part two of Red Teaming GitHub, in this post I cover how an adversary can abuse the GitHub CLI.

Read more

Red Teaming GitHub: Part 1 Attack Surface

Part one of Red Teaming GitHub, in this post I cover the attack surface and different threats to the service.

Read more

Kubernetes RBAC - Tips and Tricks

Tips and tricks to master Kubernetes RBAC

Read more