A digital garden ยท tended weekly
Field Notes
A personal knowledge wiki โ ideas distilled from books, papers, conversations, and courses.
- Notes
- 9
- Topics
- 13
- Evergreen
- 3
Fresh this week
- Software Supply Chain as an Adversary Playbook
Modern breaches increasingly enter through dependencies and build pipelines rather than production apps.
- Zero Trust as Verify-Everywhere, Not VPN Replacement
Zero trust means every request is authenticated and authorized regardless of network location.
- Attack Trees for Structured Threat Modeling
Attack trees turn vague security worries into a hierarchy of concrete, testable adversary goals.
Recently tended
- Software Supply Chain as an Adversary Playbook
Modern breaches increasingly enter through dependencies and build pipelines rather than production apps.
- Zero Trust as Verify-Everywhere, Not VPN Replacement
Zero trust means every request is authenticated and authorized regardless of network location.
- Attack Trees for Structured Threat Modeling
Attack trees turn vague security worries into a hierarchy of concrete, testable adversary goals.
- Security Review Cadence as Operational Memory
A recurring review rhythm turns isolated security observations into durable operational memory.
- Detection Engineering as a Feedback Loop
Detection rules improve fastest when every alert is treated as feedback on assumptions.
- Access Review Patterns That Catch Drift
Access reviews catch more risk when they focus on entitlement drift and business context.