Archives

All the articles I've archived.

2026 ¹

January ¹

ai 10 Jan, 2026 2 min read

Building RedTeam MCP: An AI-Powered Penetration Testing Assistant

A practical guide to building an MCP server that enables AI assistants to orchestrate offensive security tools for penetration testing, with proper safety guardrails
Read article

2025 ⁸

December ²

langchain 20 Dec, 2025 3 min read

Building LangChain Tools and Agents: From Zero to SOAR Assistant

Learn how to create LangChain tools from scratch and build a simple SOAR (Security Orchestration, Automation and Response) agent. This hands-on tutorial covers the fundamentals of tool development and agent creation for security automation.
Read article
rag 18 Dec, 2025 5 min read

Building a RAG System for Cybersecurity Compliance: A Simple POC with LangChain v1+

A step-by-step walkthrough of building a basic RAG system with LangChain v1+ to query compliance regulations. This is an unoptimized POC for learning purposes, not production-ready.
Read article

October ¹

Elastic ML 29 Oct, 2025 12 min read

Engineering Security ML with Elastic – Part 4: Production Pipelines with Dagster & MLflow

Transitioning from exploratory notebooks to reliable, repeatable anomaly detection pipelines using Dagster and lightweight MLflow-based model management.
Read article

June ²

April ¹

elasticsearch 18 Apr, 2025 16 min read

Engineering Security ML with Elastic – Part 2: Unsupervised Anomaly Detection

Learning Normal Authentication Behavior with Autoencoders
Read article

January ²

2024 ²

November ¹

ai 30 Nov, 2024 6 min read

Model Context Protocol (MCP): Bridging the Gap Between AI and External Systems

An in-depth exploration of Model Context Protocol (MCP), the open standard revolutionizing how AI systems interact with external data sources and tools
Read article

February ¹

docker 15 Feb, 2024 2 min read

Docker & Kubernetes Abuse Cheatsheet

Container escapes, docker.sock exploitation, K8s privilege escalation and misconfigurations for HTB, CTFs and cloud pentests
Read article

2023 ¹⁴

December ¹

web 22 Dec, 2023 2 min read

Advanced Web Hacking & Pivoting Cheatsheet

SSRF, Request Smuggling, Prototype Pollution, WAF bypass, OAuth, SAML, advanced logic flaws and internal pivoting
Read article

November ²

October ¹

linux 18 Oct, 2023 1 min read

Linux Privilege Escalation Cheatsheet

Fast techniques, tools, and commands for HTB, CTFs and OSCP-like environments
Read article

September ²

August ²

July ¹

active-directory 20 Jul, 2023 2 min read

Active Directory Pentesting Cheatsheet

Fast enumeration, common attack paths, and practical commands for HTB, CTFs and OSCP-like environments
Read article

June ¹

burp 15 Jun, 2023 3 min read

BurpSuite Repeater/Intruder Power Tips

Advanced workflows, payload tricks, bypass techniques and hidden features for HTB, CTFs and real-world web exploitation
Read article

May ¹

osint 10 May, 2023 2 min read

OSINT Capture-The-Flag Cheatsheet

Fast techniques, tools and workflows for social, metadata, geolocation, infrastructure and digital footprint CTF challenges
Read article

April ¹

embeddings 20 Apr, 2023 7 min read

Vector Embeddings and Semantic Search: The Foundation of Modern AI

A comprehensive exploration of vector embeddings, from word2vec to modern transformers, and how they enable semantic search in production systems
Read article

February ¹

llm 15 Feb, 2023 8 min read

Understanding LLM (Large Language Models): From Transformers to GPT

A deep dive into the architecture, mechanisms, and evolution of Large Language Models, from the Transformer breakthrough to modern GPT systems
Read article

January ¹

pivoting 12 Jan, 2023 1 min read

Port Forwarding & Pivoting Cheatsheet

Quick notes for HTB, CTFs, tunneling, data exfiltration and exposing internal services
Read article

2022 ²

September ¹

passwords 2 Sep, 2022 2 min read

Password Attacks & Credential Hunting Cheatsheet

Bruteforce, credential harvesting, hash cracking, spraying and password reuse attacks for HTB, CTFs and real-world pentests
Read article

March ¹

shells 22 Mar, 2022 1 min read

Reverse Shells & Web Shells Cheatsheet

Quick shells for HTB/CTFs: reverse shells, bind shells, web shells, upgrades and fallback techniques
Read article

Archives

Building RedTeam MCP: An AI-Powered Penetration Testing Assistant

Building LangChain Tools and Agents: From Zero to SOAR Assistant

Building a RAG System for Cybersecurity Compliance: A Simple POC with LangChain v1+

Engineering Security ML with Elastic – Part 4: Production Pipelines with Dagster & MLflow

Engineering Security ML with Elastic – Part 3: Benchmarking Unsupervised Models

LangGraph Agent Architectures and Patterns: A Professional Guide

Engineering Security ML with Elastic – Part 2: Unsupervised Anomaly Detection

Engineering Security ML with Elastic – Part 1: From Logs to Features

TypeScript for Pythonistas: A Guide to Building Red Team Tools

Model Context Protocol (MCP): Bridging the Gap Between AI and External Systems

Docker & Kubernetes Abuse Cheatsheet

Advanced Web Hacking & Pivoting Cheatsheet

Web Exploitation Cheatsheet

Windows Privilege Escalation Cheatsheet

Linux Privilege Escalation Cheatsheet

SMB & RPC Enumeration Cheatsheet

Web Attack Surface & Enumeration Cheatsheet

Active Directory PrivEsc Cheatsheet

Adversarial Machine Learning: Attacks and Defenses

Active Directory Pentesting Cheatsheet

BurpSuite Repeater/Intruder Power Tips

OSINT Capture-The-Flag Cheatsheet

Vector Embeddings and Semantic Search: The Foundation of Modern AI

Understanding LLM (Large Language Models): From Transformers to GPT

Port Forwarding & Pivoting Cheatsheet

Password Attacks & Credential Hunting Cheatsheet

Reverse Shells & Web Shells Cheatsheet