Blog
Security tooling guides, SEO notes, and updates.
Packet tools when you cannot install anything
tcpdump filters and netcat patterns on locked-down hosts where you cannot pull down a full toolkit.
netcattcpdumpnetwork
First hour of Active Directory recon
What to run, what to skip, and how not to light up every Kerberos sensor on day one of an internal test.
active-directoryreconwindows
Sqlmap on broken apps and WAFs
Tamper scripts, blind injection patience, and when automation stops being the right tool on web tests.
sqlmapwebinjection
Hashcat after you extract the NTLM
Mode selection, rules vs straight cracks, and GPU hygiene when offline password attacks actually matter.
hashcatcredentialscracking
ffuf when your wordlist is wrong
Filter tuning, recursion traps, and vhost fuzzing mistakes that waste hours on web engagements.
ffufwebfuzzing
Nmap scans that survive real networks
Scan timing, UDP reality checks, and service detection traps on noisy client networks during authorized pentests.
nmapscanningrecon