Debasis Biswas
Cybersecurity Enthusiast & Developer
Security insights, code, and tech exploration
Exploring cybersecurity, web development, and the intersection of security and modern software. Sharing knowledge about building secure applications and staying ahead of threats.
Latest Posts
securitylinuxkernelcveprivilege-escalationdevsecopskubernetes
Copy Fail (CVE-2026-31431): A Universal Linux Privilege Escalation Vulnerability
A technical breakdown of Copy Fail (CVE-2026-31431): the kernel root cause, high-level exploitation flow, why it’s unusually reliable across distros, and what defenders can do to reduce risk.
May 2, 2026
10 min read
ansibledevsecopsinfrastructureautomationsecuritylinux
Getting Started with Ansible: Infrastructure Automation for DevSecOps ⚙️
A practical, beginner-friendly introduction to Ansible—inventory, playbooks, modules, and a real-world server hardening example you can adapt for DevSecOps.
April 10, 2026
9 min read
securitydevsecopsci-cdgithub-actionssupply-chainself-hostedvps
How a Single Pull Request Can Turn Your CI/CD Pipeline Against You🚨
Self-hosted CI runners execute untrusted PR code inside your network perimeter—turning a routine contribution workflow into a high-leverage compromise path.
February 3, 2026
6 min read
securitycvereact2shellvulnerabilityroot accessvps
React2Shell CVE (CVE-2025-55182): From React Frontend Bug to Remote Shell (RCE)
How abusing a React frontend vulnerability (CVE-2025-55182) can lead to remote code execution (RCE) and full server compromise.
December 31, 2025
3 min read
cloudcybersecuritybeginnertechnology
Introduction to Cloud Computing and Cybersecurity: A Beginner's Guide
A beginner-friendly overview of cloud computing and cybersecurity fundamentals.
July 4, 2025
2 min read
cloudvmvpsdockersecurity
How to Use VM, VPS, and Docker Together for a Secure Cloud Workflow
Learn how to combine virtual machines, VPS, and Docker for a robust and secure cloud development workflow.
July 4, 2025
4 min read
Subscribe by email
Get new posts delivered to your inbox. No spam; unsubscribe anytime.
If the form doesn’t load (some browsers block embedded forms), use the “Open subscription form” button.