I’ve been writing bits and bobs here and there, but I’ve decided to try something different. I’ll start publishing writing pieces, guides, and other content here on my own site. In the past, I’ve generally written through LinkedIn or similar platforms, but doing it this way feels different. It won’t be only another creative outlet but a different experience to understand.

I’ve always exploited or completed engagements where targets were web applications, but I haven’t necessarily maintained one myself. This will provide perspective from the build side and give me an inch-deep understanding of the development lifecycle for web-hosted applications. Even if my site contains only static pages and images, I believe it will provide valuable insight into the process.

Key Outcomes and Concepts

I’ve decided to note some key outcomes and concepts I hope to understand better as I journey through this.

Live Telemetry

A big one I’m excited about is generating raw telemetry to ingest into a data aggregator, or even visualizing it through Cloudflare’s free analysis tools for site engagement. It’ll provide insight into bot traffic, crawlers, scanners, and more. I’ll probably enable some “safe” level of scraping and scanning just to see what it looks like, if there is such a thing as a safe level. But hey, that’s part of the learning experience.

Cloudflare CDN and Services

Cloudflare is a service I’m highly impressed with, and I feel I’ve barely scratched the surface. The company offers so many accessible features, scaling from individual developers to full enterprise solutions. I’m excited to explore what they offer and how I can leverage their tools.

Continuous Integration and Continuous Development/Delivery

I’ve been learning a lot about CI/CD over the past six months. Primarily Git, Infrastructure as Code (Terraform), and the Software Development Lifecycle. Using this site as a continuous platform for delivering content and features, I plan to apply this knowledge to benefit my career as a security engineer. Developing detections as code and managing the configuration and deployment of security solutions via infrastructure as code will directly benefit from managing this site.

So long for now

I don’t know how often I’ll write, but I’m aiming for something like once every 2-4 weeks. I’d rather deliver something genuinely interesting once a month than churn out slop once a week. There’s enough of that on the internet already.