Blog

Blog Posts
Let Attendees Say No to Conference Swag
March 6, 2026
Let Attendees Say No to Conference Swag

Most tech conference freebies like badges, stickers, and branded items are useless clutter after the event. It's time conferences let attendees opt out of swag. …

Read more
How 'What Can Go Wrong?' Went Wrong
December 10, 2025
How 'What Can Go Wrong?' Went Wrong

How the security threat modeling mindset of constantly asking 'what can go wrong?' seeped into my personal life, creating subtle pessimism, and how I broke the cycle. …

Read more
The Key Factor Behind TablePlus's DDoS Resiliency
April 23, 2024
The Key Factor Behind TablePlus's DDoS Resiliency

How TablePlus survived a DDoS attack at zero cost by using Cloudflare R2 instead of AWS S3. The same attack on AWS would have cost $650+ in bandwidth charges. …

Read more
Ultimate Guide to Fail at Least Privilege in Cloud (and the Hard Lessons I Learned)
February 26, 2024
Ultimate Guide to Fail at Least Privilege in Cloud (and the Hard Lessons I Learned)

Real-world mistakes and hard lessons from implementing least privilege in cloud, from treating it as binary to lacking rollback mechanisms in automation. …

Read more
Kickstarting in Cybersecurity: Strategic Advice for 2nd and 3rd Year Indian College Students
January 23, 2024
Kickstarting in Cybersecurity: Strategic Advice for 2nd and 3rd Year Indian College Students

Practical career advice for Indian college students breaking into cybersecurity, covering domains, first roles, networking, coding skills, and choosing the right company. …

Read more
Beyond the Basics: AWS WAF's Lesser-Known Limitations
September 13, 2023
Beyond the Basics: AWS WAF's Lesser-Known Limitations

Lesser-known AWS WAF limitations from production experience: 8 KB body inspection limit, inflexible rate-limiting, sensitive header logging, and more. …

Read more
My Key Takeaways from AWS re:Inforce 2023
June 27, 2023
My Key Takeaways from AWS re:Inforce 2023

Key takeaways from AWS re:Inforce 2023, covering zero trust, data security, incident response, and new launches like CodeGuru Security, Security Lake, and Bedrock. …

Read more
The Risk You Can't Afford to Ignore: AWS SES and Email Spoofing
May 11, 2023
The Risk You Can't Afford to Ignore: AWS SES and Email Spoofing

Verifying a domain in AWS SES lets any IAM user with SES permissions spoof emails from any address on that domain. Here's the risk and how to fix it. …

Read more
My Love/Hate Relationship with Cloud Custodian
April 10, 2023
My Love/Hate Relationship with Cloud Custodian

A year of production experience with Cloud Custodian. Its strengths in real-time detection and auto-remediation, and its pain points in docs and multi-account setup. …

Read more
One important feature that Dependabot is missing
December 11, 2022
One important feature that Dependabot is missing

GitHub Dependabot lacks a central dashboard for prioritizing alerts across repos. Here's how to build one with GraphQL API, Postgres, and Apache Superset. …

Read more
Previous 1 2 3
© 2026 Chandrapal Badshah. All rights reserved