Posts
Latest posts and articles from glyph.sh
Browse my latest technical posts, guides, and tutorials.
Blackmagic Camera App XML Schema Reference
May 1, 2026
Complete XML schema documentation for the Blackmagic Camera iOS app custom streaming service configuration. All valid elements, attributes, and values.
Setting Up a Ventoy Multi-Boot USB from macOS
April 16, 2026
Ventoy doesn't officially support macOS, but with diskutil, dd, and some patience you can build a multi-boot USB that boots Windows, Linux, and rescue tools from a single drive
Building an Always-On Raspberry Pi Security Platform
March 26, 2026
From headless setup to reverse SSH tunnels, LUKS encryption, and a kill switch -- how a Raspberry Pi 3B+ became a portable pentest drop box reachable from anywhere.
iOS Annoyances Coming from Android: File Defaults, Autocorrect, and AirDrop
March 25, 2026
Quick fixes for common iOS frustrations when switching from Android -default app hijacking, aggressive autocorrect, and AirDrop limitations on hotspot
Claude AI Wrote Code That Could Have Stolen My AWS Credentials
March 23, 2026
A simple NameError led me to discover critical code injection vulnerabilities in AI-generated bash scripts that could exfiltrate credentials and execute arbitrary code
Stream iPhone Blackmagic Camera to OBS on Mac with Local RTMP
March 10, 2026
Stream your iPhone to OBS Studio with full manual camera controls. Use OBS plugins, filters, and scenes with your iPhone camera. Keep your entire streaming setup while using iPhone as a camera source.
System Monitoring on a Daily-Driver Laptop: What Actually Fits
February 15, 2026
Exploring what monitoring actually runs on a 16GB daily-driver laptop. Started with Wazuh SIEM, built a Prometheus + Grafana + node_exporter stack instead. Here's what works, what doesn't, and what comes next.
CVE-2025-6218: WinRAR Path Traversal Exploit & Patch Guide
December 17, 2025
CVE-2025-6218 is a critical WinRAR path traversal vulnerability (CVSS 7.8) exploited by nation-state actors. Affects WinRAR ≤7.11. Patch to 7.12+. Detection and remediation guide.
Management Frameworks for IT Leaders: What Actually Works
December 9, 2025
Practical guide to using Kanban, Eisenhower Matrix, SWOT analysis, and Gantt charts for managing IT infrastructure and security projects - from someone who's actually used them
Note-Taking at Work: How to Stay Organized When Everything is Chaos
November 19, 2025
Why note-taking matters for engineers and IT professionals, and how to build a system that actually works when you're juggling meetings, incidents, and projects.
Everything as Code: The 2025 Platform Engineering Playbook
November 18, 2025
How Infrastructure, Policy, Configuration, and even Application code are converging into a single programmable stack. Practical lessons from building self-service platforms with Terraform on AWS and Azure.
AI-Assisted Content: Why Transparency Matters
November 16, 2025
An honest discussion about using AI assistance in professional work, the distinction between AI-generated and AI-assisted content, and why transparency matters.
Blocking AI Scrapers with AWS WAF: A Technical Guide
November 14, 2025
How I caught AI companies violating robots.txt 72 times per day and used AWS WAF to block them from scraping my content for training data
Cisco ASA Zero-Days: When Threat Intelligence Predicted the Attack
November 11, 2025
How GreyNoise detected the Cisco ASA attack weeks before it went public
How Ad Blockers Broke My Back-to-Top Button (And How I Fixed It)
November 10, 2025
A deep dive into debugging why a simple back-to-top button wouldn't appear, and the surprising culprit: aggressive ad blocker filter lists.
Static Site Hosting on AWS: Fast, Secure, and Cheap
November 10, 2025
How to host a static site on AWS using S3 and CloudFront - the architecture behind glyph.sh
Web Application Security: What I Wish I Knew Earlier
November 9, 2025
Lessons learned from implementing security practices in production environments