Posted inSecurity
CrowdSec on Linux: Moving Beyond Fail2Ban to Community-Powered Security
Move beyond Fail2Ban. Learn how to deploy CrowdSec on Linux to leverage community-driven threat intelligence and block automated attacks in real-time.
Posted inSecurity
Audit AWS and Azure Security with Prowler: A Practical Guide to Fixing Cloud Drift
Cloud misconfigurations are the leading cause of data breaches in AWS and Azure. This guide covers a professional workflow for using Prowler to automate security audits and close critical infrastructure gaps.
Posted inSecurity
Deploy Keycloak on Docker: Build a Centralized IAM and SSO System for Your Apps
Running auth logic in every application separately creates security gaps, duplicated code, and user frustration. This guide walks through deploying Keycloak on Docker with PostgreSQL to build a centralized IAM and SSO system — one login, consistent security policies, and MFA across all your apps.
Posted inSecurity
Hardening Linux: A Practical Guide to ClamAV and Rkhunter
Secure your Linux server against malware and hidden backdoors. This guide walks you through setting up ClamAV and Rkhunter, automating scans, and managing system integrity.
Posted inSecurity
Hardening Nginx: Stop Clickjacking and Injection with CSP, HSTS, and Permissions-Policy
Secure your Nginx server in minutes. This guide covers HSTS for encryption, CSP for blocking XSS, and Permissions-Policy for hardware privacy with production-ready code.
Posted inSecurity
Linux Incident Response: 6 Months of Battle-Tested Survival Tactics
A battle-tested Linux incident response workflow. Learn how to use busybox-static and auditd to detect server breaches and handle high-pressure forensic investigations.
Posted inSecurity
Hardening Ubuntu: Using AppArmor to Sandbox Applications
Secure your Ubuntu server with AppArmor. This guide walks you through creating custom profiles, using complain mode for testing, and enforcing kernel-level application sandboxing.
Posted inSecurity
Watching the Hackers: Building an SSH Honeypot with Cowrie
I ran an SSH honeypot for six months and captured 50GB of logs. Here is how you can use Cowrie to monitor real-world attackers and improve your Linux security.
Posted inSecurity
Secure Data Deletion on Linux: Why ‘rm’ Isn’t Enough and How to Fix It
Think 'rm' deletes your files? Think again. Discover how to use shred, wipe, and dd to permanently erase sensitive data on Linux and why SSDs require a different approach.
Posted inSecurity
Stop the Guesswork: Using Auditd for Linux Incident Response
Move beyond basic Linux logging. This guide shows you how to use Auditd to track file modifications and command execution at the kernel level to solve production incidents faster.