-rw-rw-r-- 1 byteguard byteguard 10053 Jun 30 15:36 /tmp/ci_head.bak-objfix-20260630-153640.txt

Latest Posts page 2 of 3

Fortified Docker container with seccomp filter, Falco owl monitoring, Trivy scanner, image signing, and chains of trust
[ docker-2 ]

Advanced Docker Container Security Guide

If you followed my earlier post on Docker security best practices, you already know the fundamentals: non-root users, read-only filesystems, dropped capabilities.

Apr 29 · 10 min
A
HackTheBox Lame server with cracked SMB and FTP ports, nmap terminal, Metasploit console, and root flag
[ ctf-2 ]

HackTheBox Lame Walkthrough — Step by Step

Spoiler Warning: This post contains a full walkthrough of the retired HackTheBox machine "Lame," including both exploitation paths and the

Apr 28 · 8 min
A
Home lab desk with Proxmox server rack showing VM layers, management dashboard, and network router
[ proxmox ]

How to Build a Home Lab with Proxmox VE

A VPS is great for running production services, but for learning, testing, and breaking things on purpose, nothing beats a home lab.

Apr 27 · 11 min
A
Nmap network scan with radar sweep revealing open ports on server nodes, terminal output, and NSE script toolbox
[ nmap ]

How to Use Nmap Like a Pro — Beginner's Guide

Every time I set up a new server, the first thing I do before hardening anything is figure out what's

Apr 25 · 9 min
A
Nextcloud cloud icon with orbiting files, Docker whale carrying containers, SSL padlock, and docker-compose terminal
[ self-hosting-2 ]

Self-Hosting Nextcloud with Docker Compose

Google Drive gives you 15 GB for free and sells you convenience. In exchange, it scans your files, trains AI on your

Apr 24 · 9 min
A
OWASP Top 10 leaderboard with threat icons, code editor showing vulnerable and secure code, and OWASP shield logo
[ security-2 ]

OWASP Top 10 Explained with Real Examples

If you build anything for the web -- APIs, SPAs, server-rendered apps, microservices -- the OWASP Top 10 is the baseline you

Apr 23 · 10 min
A
Browser security audit panel with HTTP header checklist, shield, magnifying glass, and server icons
[ security-2 ]

How to Check Your Website's Security Headers

Every HTTP response your server sends includes headers that browsers use to decide how to handle your content. Get them wrong --

Apr 22 · 9 min
A
Hetzner cloud server with performance, value, benchmarks, locations, and 4.5 star rating panels
[ hetzner ]

Hetzner Review 2026: My Honest Experience

I've been running the entire ByteGuard stack on a Hetzner CPX22 in Helsinki for months. Ghost blog, Nginx Proxy Manager,

Apr 21 · 6 min
A
Glowing shield deflecting brute-force attack arrows with banned IPs in a jail cell — Fail2Ban setup guide
[ fail2ban ]

How to Set Up Fail2Ban on Your Server

TL;DR Install and configure Fail2Ban to automatically block IPs that brute-force your SSH, Nginx, or other services. Includes custom jails for

Apr 20 · 8 min
A
Uptime Kuma monitoring dashboard with uptime graphs, status indicators, and alert bell in dark server room
[ uptime-kuma ]

How to Monitor Your Server with Uptime Kuma

TL;DR Deploy Uptime Kuma with Docker Compose and monitor your websites, APIs, and Docker containers in minutes. Get instant alerts via

Apr 19 · 8 min
A
Fortress server with padlock, SSH config terminal, and blocked connection attempts — SSH hardening guide
[ ssh ]

SSH Hardening — The Ultimate Guide for 2026

TL;DR Go beyond basic SSH setup: disable password auth, lock down sshd_config with strong modern ciphers, add Fail2Ban for automated

Apr 18 · 8 min
A
HackTheBox Cap walkthrough — terminal with root shell, packet capture window, and key on dark desk
[ ctf ]

HackTheBox Cap Walkthrough — Step by Step

Spoiler Warning: This is a full walkthrough of the retired HackTheBox machine "Cap." If you haven't attempted it

Apr 17 · 5 min
A