Latest Posts
Advanced Docker Container Security Guide
If you followed my earlier post on Docker security best practices, you already know the fundamentals: non-root users, read-only filesystems, dropped capabilities.
HackTheBox Lame Walkthrough — Step by Step
Spoiler Warning: This post contains a full walkthrough of the retired HackTheBox machine "Lame," including both exploitation paths and the
How to Build a Home Lab with Proxmox VE
A VPS is great for running production services, but for learning, testing, and breaking things on purpose, nothing beats a home lab.
How to Use Nmap Like a Pro — Beginner's Guide
Every time I set up a new server, the first thing I do before hardening anything is figure out what's
Self-Hosting Nextcloud with Docker Compose
Google Drive gives you 15 GB for free and sells you convenience. In exchange, it scans your files, trains AI on your
OWASP Top 10 Explained with Real Examples
If you build anything for the web -- APIs, SPAs, server-rendered apps, microservices -- the OWASP Top 10 is the baseline you
How to Check Your Website's Security Headers
Every HTTP response your server sends includes headers that browsers use to decide how to handle your content. Get them wrong --
Hetzner Review 2026: My Honest Experience
I've been running the entire ByteGuard stack on a Hetzner CPX22 in Helsinki for months. Ghost blog, Nginx Proxy Manager,
How to Set Up Fail2Ban on Your Server
TL;DR Install and configure Fail2Ban to automatically block IPs that brute-force your SSH, Nginx, or other services. Includes custom jails for
How to Monitor Your Server with Uptime Kuma
TL;DR Deploy Uptime Kuma with Docker Compose and monitor your websites, APIs, and Docker containers in minutes. Get instant alerts via
SSH Hardening — The Ultimate Guide for 2026
TL;DR Go beyond basic SSH setup: disable password auth, lock down sshd_config with strong modern ciphers, add Fail2Ban for automated
HackTheBox Cap Walkthrough — Step by Step
Spoiler Warning: This is a full walkthrough of the retired HackTheBox machine "Cap." If you haven't attempted it