Blog

  • Prompt Engineering Techniques

    Prompt Engineering Techniques

    A comprehensive reference of prompt engineering methods, strategies, and best practices for working with Large Language Models (LLMs). Table of Contents

  • The “Expert Prompt” Myth

    The “Expert Prompt” Myth

    Why Telling AI It’s a Genius Might Be Making It Dumber You’ve probably seen it everywhere — prompting guides that open with “You are an expert full-stack developer…” or “You are a world-class data scientist…” It feels intuitive. You want expert output, so you ask for an expert. New research suggests this might be working…

  • NoName057(16) DDoS January 2026

    NoName057(16) DDoS January 2026

    Before the World Economic Forum 2026 kicks off in Davos, the global spotlight is once again turning to Switzerland. This not only for high‑level political and economic talks, but also for its exposure to cyber risks. In the past two years, pro‑Russian hacktivist groups like NoName057(16) have repeatedly used the WEF as a stage for…

  • Crawler: Seekport Bot

    Crawler: Seekport Bot

    In my access logs, I found excessive requests from IP address 65.108.99.119. During a regular review, I also found this IP is listed on AbuseIPDB, which indicated it has a lower reputation or may even be malicious. The reverse PTR was also not very valuable.

  • What is Mozilla/5.0 Optimizer

    What is Mozilla/5.0 Optimizer

    During a review of access logs, I recently came across this user agent string. It was by far the highest in request count. As it turns out, this is a SEO tool called Sistrix. The reverse PTR for real asterisk calls should always be: More

  • Front Door Security: The RemoteAddr Trap

    Front Door Security: The RemoteAddr Trap

    If you are using Azure Front Door, the need for a WAF policy that rate limits or blocks access to certain IP addresses might arise. Using the correct parameters in the WAF policy is crucial to implement an effective block that cannot be bypassed. When selecting the property RemoteAddr in your WAF rules, a custom…

  • NoName057(16) returns after Police raid

    NoName057(16) returns after Police raid

    Between July 14-17, police and cybersecurity agencies from multiple countries worked together to go after NoName057(16), a pro-Russian cybercrime network. The operation, called “Eastwood,” was coordinated by Europol and Eurojust. Authorities from 12 countries took action at the same time, targeting both the group’s members and their computer infrastructure. The main participating countries included the…

  • Stumbled on Prompt LLM Builder

    Stumbled on Prompt LLM Builder

    I stumbled across this prompt refinement tool. I do not have much experience with it, but it looks interesting to help with building prompts.

  • Fix Invoke-Sqlcmd FileNotFound Error

    Fix Invoke-Sqlcmd FileNotFound Error

    A recent change in the SqlServer PowerShell module has given me a headache this week. I’m running the module with Azure DevOps in a pipeline that is triggering an Azure deployment script within a network-integrated container instance. The problem this error.

  • Hardcoded credentials in Sitecore XP

    Hardcoded credentials in Sitecore XP

    A blog post was today published outlining the risk (CVE-2025-34509) of Sitecore having a default user Sitecore\ServicesAPI and a password of b. The user usually has no default roles, however, it is already one step inside the system. Probably setting a secure and strong password could be sufficient. I didn’t yet see an official statement…