nuckingfoob

Android Webview Exploited

How an android app can bypass CSP, iframe sandbox attributes, etc. to compromise the page getting loaded in the webview despite the classic protections in place.

Gratitude

That Dream Job

Interview experience with LinkedIn around 2016

Gratitude

Yet Another Nice Discussion

Interview experience with Postman around 2016

securing-aws

Proactively Secure AWS S3

Using Hashicorp Terraform for provisioning of secure (opinionated) AWS S3 buckets

securing-aws

Audit AWS S3

Automating AWS S3 audits - an opinionated approach

securing-aws

Objective 1: Secure AWS S3

Securing AWS S3 - Strategy & planning that worked for us

securing-aws

Securing Your Cloud Infra

A first in a series of blog posts on approaching cloud security around AWS & GCP, with anecdotal examples