Blog Posts

15 Strategies to Win CTFs

If you’re about to go to your first CTF or have been to a handful, chances are you are looking for ways to improve your game and win some prizes. CTFs are generally very tough and with hundreds of people competing for a small handful of prizes you can expect to lose far more than you win. Unlike hackathons, where a little charm and confidence goes a long way, CTFs are often a straight test of technical knowledge and endurance.

Read More...

5 Security Concerns When Using Static Site Generators

Static == Secure Right? If you’ve read my recent post extolling the virtues of static site generators for secure web development you might think that deploying a static site makes you more or less invulnerable to cyber adversaries. Although it’s true that going static dramatically reduces your vulnerability profile, it doesn’t quite eliminate it. This post considers five possible attack vectors against websites built with static generators (e.g. Jekyl, Hugo, etc.

Read More...

Static Sites: The Ideal Security Blogging Platform

Juggling Priorities It should come as no surprise that, when building this site, my first concern was security. This arose partially from the fact that I live and breathe cybersecurity and believe (not without cause) that the whole internet is out to get me. However, it’s also true that sites focused on cyber issues tend to present attractive targets to hackers attempting to prove their skills and gain some renown with people who might actually appreciate their accomplishments.

Read More...