Things I build, break, fix, and write about

7 July 2026
Tracing acme.sh certificate handling in TLS interception

I spent too long chasing the neat version of TLS wiretapping reconstruction, then found the mess: shell parsing, token limits, and renewal timing. The interesting bit is not the packet capture, it is the point where certificate handling quietly hands trust to something you did not mean to trust.

7 July 2026
Reverse engineering game binaries with static analysis

Game binaries give up more than they should, if you know where to look. I start with binary analysis, not the folklore around the game, then use...

6 July 2026
Agentic AI still needs domain judgement

Agentic AI can write the thing, but it still cannot tell you whether the thing is right. That is where domain expertise matters, because a clean...

6 July 2026
Weekly Tech Digest | 06 Jul 2026

Stay updated with the latest in tech! This digest covers AI ethics, auto industry shifts, and the impact of politics on technology, exploring today's...

Latest blog posts you might like

21 February 2026
Documenting quality checks in neon sign manufacturing

Neon Sign Automation sets repeatable test sequences, links firmware, test logs, photos and manifests to each job, and flags deviations for root-cause tracking. Use short SOPs and versioned...

21 February 2026
Mitigating security risks from AI recommendation poisoning

Reduce risk from AI recommendation poisoning with practical controls you can apply to your assistant today. Log incoming AI links, block anonymous memory writes, record provenance for every memory...

21 February 2026
Security Advisory – 21 Feb 2026

Daily security advisory summary for 21 Feb 2026, selected for UK homelab and sysadmin readers.

20 February 2026
Understanding Siri’s integration issues with home automation

What you see Delays show up quickly once you start using Siri for home automation. The command sits there, the acknowledgement comes late, or the action lands well after you expected it. Sometimes...

20 February 2026
Removing compromised Outlook add-ins to protect your account

Securing Your Outlook Add-ins: Lessons from the AgreeTo Hijack A popular Outlook add-in called AgreeTo was abandoned by its developer and stayed listed in the Microsoft Marketplace. An attacker took...

19 February 2026
Configuring Screenless Devices for Schools

Unlock the potential of screenless devices in education by minimising distractions and enhancing productivity. Discover effective setup and management strategies in this comprehensive guide.

19 February 2026
Firewall rules for model extraction attempts

Firewall rules for model extraction attempts AI models exposed over APIs get probed. A lot. Sometimes that is just noisy curiosity. Sometimes it is patterned traffic meant to map out model behaviour...

18 February 2026
Integrating AI software configurations in your homelab

Plan and version your homelab so AI software configurations remain reproducible, secure and easy to roll back. You should automate provisioning and testing, segment workloads on separate VLANs and...

18 February 2026
Assessing collision risks for AWS Outpost deployments

You should check telemetry for attitude alerts, sudden shutdowns, thermal spikes and short comms blackouts to identify collision risks for AWS Outpost deployments. Record exact timestamps, correlate...

17 February 2026
Training users to avoid LNK file threats

Mitigate Windows LNK file risks effectively by implementing key security measures and user training. Protect your system from shortcut vulnerabilities today.