Offensive Security
I do pentests, red team ops, and attack-path research. I learn how systems connect together and how they can be exploited.
About
I break things on purpose so they don't break by accident.
Based in Stockholm. Ten years in ops and cyber security: pentesting, red teaming, cyber threat intelligence, and lately vibe coding and AI/LLM security.
I find weaknesses in systems and try to exploit them before someone else does. My job is to understand how everything inside an enterprise environment connects together, identify where those connections can be abused, and map out the paths an attacker could take to reach a goal. I test those assumptions, validate the impact, and document both the findings and the fixes.
Cyber security has been my passion since I was a kid. Vibe coding lets me combine learning something with writing it down. This site is what came out. Static, HTML, CSS, and JS. Served by nearest Cloudflare worker to you. Now and then I post something I just need to think through.
CTI
I write RFIs, map TTPs, track how real groups operate. I present my findings to executives and technical staff.
AI/LLMs
I use LLMs for automating security testing while also studying how LLM systems can be misused.
CI/CD, AD, Cloud and Web
I audit CI/CD pipelines, review on-prem AD, test cloud baselines, and pentest web apps. Consultancy used to keep me rotating through all of them.
CSIRT
I lead triage and containment during internet-scale incidents like Hafnium (Exchange) and Log4Shell.