Security
When Caching Hides the Truth: A VPC Service Controls & Artifact Registry Tale
gcp-sa-key-checker: A recon tool for GCP Service Account Keys
How to bypass GitHub’s Branch Protection
LLMs at Work: Outsourcing Vendor Assessment Toil to AI
Streamlining Security Incident Response with Automation and Large Language Models
Mapping the Attack Surface from the Inside
An Introduction to Reverse Engineering for eBPF Bytecode
On Reviewing Employee Accesses Managed Through Okta
Mercari’s passkey adoption
Bucket full of secrets – Terraform exfiltration