// Thought Leadership

Blog

Deep dives into architecture patterns, security strategies, and lessons learned from 16+ years in enterprise tech.

Offensive Security Jun 4, 2026

Eight Labs That Made AI Security Real for Me

Eight runnable AI security labs I built: prompt injection, MCP exploits, membership inference, adversarial ML, policy-as-code, provenance, and AI GRC.

#AI Red Teaming #LLM Security #MCP

AI Engineering May 28, 2026

The AI Security Map a Practitioner Actually Needs

A working map of AI security: the token-stream problem, OWASP LLM Top 10, MCP and agent risks, adversarial ML, and the governance that ties it together.

#LLM Security #Prompt Injection #MCP

Offensive Security May 20, 2026

Red Teaming an Enterprise Agentic AI Platform Before Go-Live

How I red team a multi-agent SDLC platform before launch: excessive agency, data isolation, and orchestration integrity, with the controls that hold.

#AI Red Teaming #Agentic AI #Prompt Injection

System Design Feb 1, 2026

Why AI-Native API Security Changes Everything: A Technical Look at Cyron's Architecture

A technical look at how Cyron.io secures APIs: an eBPF kernel agent that mirrors traffic out-of-band, behavioral baselines, and LLM-based forensics.

#API Security #AI Security #eBPF

System Design Jan 31, 2026

CVE-2026-1281 & CVE-2026-1340: Dissecting the Ivanti EPMM Zero-Day RCE

Deep technical analysis of Ivanti EPMM zero-day RCE vulnerabilities. Exploitation mechanics, defense patterns, and Cyron.io API security integration.

#Zero-Day #MDM Security #Command Injection