All Posts
Who is MK?
Sys admin roots, security engineering evolution, and why I started this blog.
S3 Misconfigs I Keep Seeing in the Wild
A breakdown of the most common S3 security mistakes I encounter during assessments — and how to actually fix them.
IAM Least Privilege: What It Actually Looks Like in Practice
Everyone says 'use least privilege' but nobody shows you what that means when you're staring at a real IAM policy. Here's how I approach it.