Thoughts, insights, and technical writing
I write about cybersecurity, backend systems, AI, and practical development. These articles reflect how I think, build, and solve real-world problems.
How I Built an Automated Web Security Scanner — How It Works and How Your Website Benefits From It
Most websites have security loopholes their owners do not know about. I built a tool that finds them automatically — here is how it works and what it checks.
Developers Are the First Line of Defence — What Secure SDLC Actually Means
Security conversations tend to focus on the user. But many of the real problems start much earlier — in the decisions developers make during design, development, and deployment.
Sessions vs JWT — They Are Not Alternatives, They Solve Different Problems
Every developer has seen the debate. Sessions or JWT? The truth is that framing the question that way misses the point entirely.
How I Closed Port 22 on My Server and Still SSH Into It Every Day
Most developers leave SSH wide open on their servers. I locked it down completely using Zero Trust — here is exactly how I did it and why you should too.
Building a Hybrid Auth System (Sessions + JWT)
Why most systems choose one authentication strategy — and how I designed a system that supports both securely and cleanly.