A working knowledge base for security engineers — application security, cloud, AI/LLM risks, compliance, and federal cyber.
Security architecture blueprint (by major domains)
Security Compliance
Security architecture blueprint - A sample
Security Compliance
Top-Down Security Architecture Diagram
Security Compliance
A single page security architecture Top down approach
Security Compliance
Hilton Login → Hilton Auth Server → Backend → Booking API (OAuth PKCE flow)
Application Security
A Hotel reservation OAuth flow with PKCE
Application Security
All things Federal Cyber OVerview
Federal Cybersecurity
Federal
Federal Cybersecurity
Pictorial Graph Representation of Cyber in Federal
Federal Cybersecurity
OAuth fundamentals → PKCE → OIDC → SAML → enterprise use-case integration.
Application Security
All-in-One OAuth OIDC OKTA Auth0 - Who are you all?
Application Security
OAuth OIDC Concepts and when to use what
Application Security
What OAuth really does?
Application Security
Part 3 — IAM Defense Engineering: Building Zero-Trust Identity Systems
Application Security
Part 3 — IAM Defense Engineering: Building Zero-Trust Identity Systems
Application Security
Part 2 — Bridging the Worlds: IAM in Cloud and Hybrid Architectures
Application Security
Part 1 — The Foundations of Modern Authentication: How Identities Prove Themselves
Application Security
Microsoft Active Directory vs Azure AD - EntraID
Application Security
Microsoft AD versus Entra ID aka Azure AD
Application Security
MSFT AD vs ENTRA ID
Application Security
Microsoft Active Directory and Entra ID aka Azure AD
Application Security
Microsoft Active Directory vs Azure AD / Entra ID
Application Security
Microsoft AD - Entra ID / AZURE AD
Application Security
Identity Lifecycle through a cybersecurity lens
Application Security
Integrate Checkmarx SAST (on-prem) with GitHub properly using CxFlow
Application Security
Integrate Checkmarx SAST (on-prem) with GitHub properly using CxFlow
Application Security
Integration checkmarx SAST (on-prem) with Github
Application Security
IAM and PAM Tools, Frameworks, and Technologies (Security Engineer POV)
Application Security
All Things IAM and PAM for Secuity Engineer POV
Application Security
Major Commercial IAM Tools and Vendors
Application Security
OAuth, OIDC, Auth0, and Okta Why we need and what they do
Application Security
OAuth, OIDC, Auth0, and Okta - When we need and What they do
Application Security
Server‑Side Request Forgery (SSRF)
Application Security
Security Misconfiguration
Application Security
OWASP - Security Misconfiguration
Application Security
OWASP: Insecure Design
Application Security
OWASP - SQL Injection Vulnerability and Fix
Application Security
SQL Injection A bad code and Good Fix Example
Application Security
Cryptographic Failures
Application Security
Broken Access Control : Vulnerable and Fixed Code Examples
Application Security
Performing code review of Java applications
Application Security
Secure code review of Java applications and code
Application Security
OWASP Top 10 — prescriptive rules with Java examples
Application Security
OWASP Top 10 — Prescriptive rules with Java examples
Application Security
Prioritization Approach for Vulnerability Findings *
Application Security
Prioritization Approach for Vulnerability Findings *
Application Security
What is SARIF format? Benefits for Integration of various scan tools
Application Security
A sample format of Checkmarx SAST output format
Application Security
Runbook: Implementing and Integrating Machine Learning Models into Security Tooling
AI Security
Runbook: Implementing and Integrating Machine Learning Models into Security Tooling
AI Security
Inside the Model Control Plane (MCP): Architecture, Flow, and Real-World Design
AI Security
Prompt Injection Incident Response Playbook
AI Security
AI Security Risks: Why Prompt Injection Is the Most Dangerous Threat to LLM Systems
Security Compliance
Understanding Juniper Mist AI: The AI-Driven Network Platform
AI Security
Understanding the AI Lifecycle: From Idea to Intelligent System
AI Security
Enhancing Threat Detection and Response with Machine Learning and Neural Networks
AI Security
Designing AI-Driven Security Solutions to Identify, Predict, and Prevent Cyber Threats
AI Security
Building a Multi-Account AWS Security Architecture: Centralized Monitoring with GuardDuty, Security Hub & More
AWS Security
What is MITRE ATLAS, Purpose and Practical Usage
AI Security
NIST AI Risk-Management Framework (AI RMF)
AI Security
How to Secure AI Systems in the Enterprise — an exhaustive guide
AI Security
You prepareStatement is still vulnerable if you do like this
Application Security
The Ultimate Guide to Vulnerability Databases and Scoring Systems: CVE, CVSS, CWE, EPSS, KEV, and Beyond
Application Security
Vuln. Database APIs for free
Application Security
Production-ready CSP (Content Security Policy) template
Application Security
OWASP-SAST tool common findings and remediations
Application Security
Top 50 Application Security Engineer Interview Answers
Application Security
Situational Application Security Questions
Application Security
Top 50 Application Security Engineer Interview Questions
Application Security
Security Guidelines for 50 AWS resources
AWS Security
SAST Scanner Findings and Remediations
Interview FAQ
Building a Secure Multi-Account AWS Setup with SSO and CLI Access
AWS Security
Replacing IAM Admin Users with AWS IAM Identity Center (SSO) *
AWS Security
Software Composition Analysis (SCA): Securing Your Open-Source Supply Chain
Application Security
Guardians at the Gate: How to Master Endpoint Security in the Modern Enterprise
Endpoint Security
Your Smartphone, the New Attack Surface: A Step-by-Step Security Guide
Mobile Security
AWS Amplify: Auto-Deploy & Test Without Affecting Live Domain
AWS Security
SAST Scans and Integration into pipeline
Application Security
What is SecDevOps (a.k.a. DevSecOps)
Application Security
What Is HIPAA?
Security Compliance
Ransomware: The Evolving Cyber Extortion Threat
Ransomware
Understanding AWS Access Analyzer — What, When, and How
AWS Security
AWS Security Hub Automation Rules (CSPM)
AWS Security
Building Custom Remediation Playbooks
AWS Security
Securing EC2 Instances
AWS Security
Setting Up IAM Roles for Cross-Account Access
AWS Security
