I got tired of Claude using `cd` despite being told a hundred times not to. So I asked Claude to build a hook that would block it. Then I asked Claude to break that hook. The recursive game taught me more about Bash, parsing, and red-teaming than any tutorial would.
Posts for: #security
Poisoning the Page Cache: Escaping to Root with AF_ALG
A deep dive into a powerful local privilege escalation exploit that abuses Linux's cryptographic sockets and the page cache. We explore how it works, why it gives passwordless root access, and how container runtimes stop it.
Securing coding agents: from banned tools to the Confused Deputy
Building a secure sandbox for an AI coding agent is a fascinating game of cat and mouse. From shell injection to OS-level sandboxing, here is why blocking tools isn't enough, and why treating agent output as untrusted code is the only way forward.
SSH into your homelab from anywhere using Tor
How to set up a Tor hidden service to SSH into a remote machine without opening ports, configuring NAT, or exposing your server to the internet.