EO Short Description (2–3 lines): Graham Helton is a security-focused engineer and writer covering Kubernetes security, offensive security research, and infrastructure internals. His blogs and notes explore real-world attack paths, cloud and container security, Linux systems, and practical lessons from red team and defensive work.
35 articles from this blog
Explains Kubernetes Golden Tickets, a security flaw allowing attackers to forge admin certificates and tokens, with scripted exploitation steps.
A technical guide on using Incus to run and convert .OVA virtual machine files, covering image formats and conversion steps.
A technical guide to Kubernetes logging layers, focusing on debug vs. security logs and practical tuning advice without vendor bias.
A critical analysis of the over-reliance on certifications in cybersecurity, exploring better ways to demonstrate technical competence.
A security researcher shares a personal system for managing knowledge and taking effective notes for actionable cybersecurity learning and research.
A practical, hands-on guide to SSH port forwarding, focusing on useful commands and techniques for network traversal and security testing.
Explores the security risks of SSH-Agent forwarding, demonstrating how attackers can abuse it for lateral movement in compromised networks.
A cybersecurity professional shares their journey and practical advice on landing a role on Google's Red Team, based on their own application experience.
A security professional reviews their 2022 achievements, including SANS certifications, conference attendance, and progress towards goals like OSCP and PNPT.
A guide to setting up the terminal-based Spotify client spotify-tui with the lightweight daemon spotifyd, using PulseAudio for audio on Linux.
A technical guide on using Vagrant to quickly deploy and manage virtual machines for security testing and development environments.
A developer shares personal strategies for improving focus and efficiency while coding, including managing digital and physical distractions.
A cybersecurity professional shares their personal journey and thought process behind pursuing a Master's degree in the field, despite it not being a strict job requirement.
A technical deep dive into using Punycode for domain spoofing and phishing, demonstrating how to create deceptive URLs that mimic legitimate sites like YouTube.
A technical guide on installing and configuring Searx, a privacy-focused metasearch engine, on an AWS EC2 instance.
