Hi there!
This is a personal blog of 0xCardinal , discussing topics such as supply chain security, product & platform security, alongside discussions on interesting attack & defense strategies.
Featured
- security — 7 posts
- blockchain — 4 posts
- hacking — 4 posts
- ctf — 3 posts
- linux — 3 posts
- supply chain — 3 posts
- supply-chain — 3 posts
- blockchain security — 2 posts
- burpsuite — 2 posts
- consensus — 2 posts
- container — 2 posts
- decentralized — 2 posts
Posts
33- DNS Over HTTPS (DoH): What, Why, and How It Works
- Securing MCP Servers: A Threat Modeling Guide for Security Engineers
- Before Your Code Runs: Node.jsBefore Your Code Runs
- Before Your Code Runs: PythonBefore Your Code Runs
- YubiKey OTP Best Practices
- Navigating the Ethereum Yellow PaperBlockchain Security
- Blockchain Architecture: LayersBlockchain Security
- Consensus: How Blockchains AgreeBlockchain Security
- Blockchain ComponentsBlockchain Security
- Why Learn Blockchain & Blockchain Security?Blockchain Security
- Production Grade Bash Scripts
- Reputation Farming in OSS: A Threat to Building Trust
- Two Bits on the xz Vulnerability
- Handling Deprecated Dependencies In Your Project
- VS Code Security: Looking at the IDE from Security Lens
- Investigating Reported Vulnerabilities: A Closer Look!
- Kubernetes ComponentsLearn Kubernetes
- My Experiments with Raspberry Pi Pico - Poor Man's Rubber Ducky
- Docker Security
- Zone Identifier - Is your file downloaded from the internet?
- Understanding DKIM - Email Security SeriesEmail Security
- Understanding SPF - Email Security SeriesEmail Security
- Linux - Command Line Struggles
- gRPC: We are not RESTing Anymore
- How is XSS different from CSRF?
- Kubernetes ConceptLearn Kubernetes
- Anonymous Challenge Write-Up: WinjaCTF c0c0n 2021
- This is why you need a personal Collaborator Client!
- How does burp proxy work?
- NULLCON 2021 Training: DEVSECOPS
- Exam Experience: CEH v10
- Bug Bounty Summit CTF Writeup
- Hacking Is Not Black & White