Bypassing Quotes Filters: String.fromCharCode() to the Rescue
XSS Series - Part 6 2 min read
Learn how String.fromCharCode() can bypass filters that remove quotes, and why filtering specific characters isn't enough for XSS protection
security research & tools
IT professional with an admin background, recently diving into security. Passionate about DevOps, enabling others, and sharing knowledge to build better, more secure systems.
Building tools and sharing knowledge to make the web a safer place.
Recent Articles
Building llmsh: Natural Language Commands for the Terminal
6 min read
How I built a zsh plugin that transforms natural language into shell commands using Ollama and fzf, making terminal workflows faster and more intuitive
Bypassing Parentheses Filters: Template Literals to the Rescue
XSS Series - Part 5 3 min read
Learn how JavaScript template literals can bypass filters that remove parentheses, and why filtering specific characters isn't enough for XSS protection
Featured Projects
Automation Framework
Custom-built automation framework with AI-driven workflows for project automation and orchestration. Designed to handle complex automation tasks within projects using AI technologies, without relying on third-party platforms.
LLM Terminal Assistant
A zsh plugin that transforms natural language into shell commands using Ollama-compatible LLM backends. Features fzf integration for command selection, configurable hotkeys, and support for both local and remote Ollama instances with bearer token authentication.
Monitoring & Security Platform
A comprehensive monitoring platform that combines infrastructure uptime tracking with integrated security scanning capabilities. Features real-time alerting, incident management, and custom automation workflows built from scratch.