A field guide to the 2026 initial-access-broker market — how IABs source access, how they price it, who buys, and what the listings look like under the hood.
A 2026 workflow for telling AI-generated phishing apart from real correspondence — combining email-header forensics, public LLM-detection classifiers, and DKIM/SPF replay analysis.
A practitioner’s step-by-step tutorial for hardware-key MFA in 2026. Which YubiKey to buy, how to enroll it on Google, Microsoft, GitHub, AWS, and your password manager, plus the recovery-key gotcha that locks people out.
A step-by-step tutorial for building a real home SOC with Wazuh, Suricata, and an OPNsense router on hardware that costs under $400. Endpoint EDR, network IDS, and log correlation — the same stack used by mid-market enterprises.
A practical 2026 walkthrough for removing your name, address, and phone from the major data broker sites — using DeleteMe, Optery, and the manual fallback for the holdouts.
A step-by-step setup of the four-layer 2026 privacy stack: a hardened browser, Global Privacy Control, ad-and-tracker blocking, and email aliasing. Free or near-free. Twenty minutes. Real privacy gain.
A practitioner’s tutorial for running Llama 3 70B locally with Ollama, Open WebUI, and the right hardware. Privacy-sensitive AI work without sending a byte to OpenAI or Anthropic.
A 2026 tutorial for running structured prompt-injection and jailbreak red-team tests against your own LLM application using NVIDIA Garak, Microsoft PyRIT, and Promptfoo. Open-source, repeatable, CI-friendly.
A practitioner’s deep-dive on OSINT.industries — what it returns for username and email queries, how I use it for journalism and due diligence, and the ethics framework I won’t run a query without.
A 2026 tutorial for running OSINT investigations across paste sites, breach data, and forums using IntelX for breach search, Spiderfoot for automated correlation, and Maltego for graph analysis.