Blog

All my latest posts and articles

Risk Assessment FAIR Cybersecurity Quantitative Analysis Risk Management Business Decisions

Putting Numbers on Fuzzy Risks: The FAIR Approach

How to transform vague security risk assessments into quantifiable values you can use for business decisions using Factor Analysis of Information Risk (FAIR)

April 28, 2025

Read more

Cybersecurity DBIR Ransomware Vulnerabilities Risk Management Third-Party Risk AI Security

What Verizon's Latest Hacker Report Tells Us (And What to Do About It)

A breakdown of the key findings from Verizon's DBIR 2025 report, including vulnerability exploitation trends, ransomware developments, human factors, third-party risks, and AI security considerations.

April 23, 2025

Read more

Cybersecurity CVE Vulnerability Management Risk Assessment Threat Intelligence MITRE NVD Security

Single Point of Failure - Lessons from the CVE Funding Scare

The recent CVE funding crisis reveals the risks of relying on a single vulnerability database. Get more information about why organizations need diverse intelligence sources and better internal risk assessment to strengthen security posture.

April 17, 2025

Read more

rprobe Web Reconnaissance Security Tools TLS Analysis Content Analysis Web Security Screenshots Reporting Tool Development DevOps

Thinking Through rprobe v0.8.0

Reflecting on the new features in my tool rprobe v0.8.0, including enhanced reporting, content analysis, screenshots, and TLS security checks

April 16, 2025

Read more

C++ C++23 constexpr Compile-time Performance Standard Library Programming

How C++23 Makes constexpr More Practical (and Why You Should Care)

C++23 enhances constexpr by making it work with more types and providing better compiler feedback. Learn how to leverage compile-time evaluation for cleaner, faster, and more reliable code.

April 13, 2025

Read more