Cybersecurity

I Built a GRC Agent for $10 and a Weekend

2 January 2026·Updated: 28 January 2026·8 mins

Cybersecurity Engineering GRC AI-Agents Compliance Automation Go Evidence-Collection

Building your own AI agent isn’t magic - it’s about 300 lines of code and $10 in API credits. Here’s how I adapted the agent pattern for GRC evidence collection.

Our Biggest Security Blind Spot is Still the Browser

31 December 2025·Updated: 28 January 2026·4 mins

Cybersecurity Technology Browser-Security EDR Session-Tokens FIDO2 AI-Agents Identity-Security

Browser traffic encryption and trusted process status allow attackers to manipulate sessions undetected. Learn about session token theft, browser syncjacking, and AI agent vulnerabilities that bypass traditional EDR.

The Problems with Model Context Protocol (MCP)

10 October 2025·Updated: 28 January 2026·4 mins

AI/ML Tools Cybersecurity MCP AI-Agents Claude Security Anthropic

MCP sounds great in theory—give AI agents access to tools via a standard protocol. In practice, context window bloat, security risks, and operational complexity make it hard to recommend for production use cases.

Tenable Nessus Vulnerability Management Home Lab

28 November 2021·Updated: 18 January 2026

Cybersecurity Vulnerability Management

Hands-on vulnerability management lab using Nessus Essentials to scan a Windows VM. Covers basic vs credentialed scans, installing deprecated software to simulate real-world scenarios, and practicing vulnerability remediation workflows.

flAWS.cloud Cloud Security Misconfigurations Challenge

10 May 2020·Updated: 18 January 2026

Cybersecurity Cloud Security AWS

Complete walkthrough of flAWS.cloud CTF challenge covering AWS security misconfigurations including S3 bucket leaks, IAM permissions, EC2 snapshots, and metadata abuse. Includes video tutorial.

↑