/publications

Publications

This repository contains most of the things that I've publicly released (blog-posts, conferences, talks, ...).

2024.01.19 - Firewalling Large Language Models with Llama Guard

Blog post aroung LLM security / Llama I wrote on Kudelski Security's ModernCISO blog.

2023.11.02 - BlackAlps 2023 - YOUSHALLNOTPASS! Hardening CI/CD Pipelines on Mission Critical Environments

Talk I gave at BlackAlps 2023 around CI/CD pipelines threats and a tool that I've developed to mitigate them.

2022.06.30 - Azure Compliance-as-Code unit-testing with Golang

Blog-post I wrote on Kudelski Security's research blog around Compliance-as-Code unit-testing with Golang

2022.06.22 - Securing containers for fun and profit

(Virtual) talk I gave around Container Security.

2021.12.08 - Zero-Trust access to Kubernetes

Blog-post I co-wrote with Cloudflare around a tool we've developed at Kudelski-Security to protect our Kubernetes clusters admin APIs leveraging Cloudflare Tunnels product.

2021.11.18 - Dependency Management For Fun and Profit

(Virtual) talk that I gave around Dependency Management / SSDLC.

2020.09.29 - Attacking The Software Supply Chain

(Virtual) talk that I gave around Software Supply Chain security. There was also a live demo that is not part of these slides describing how a malicious actor could easily compromise a software supply chain to distribute malwares and backdoors.

2020.08.04 - First Steps Towards a Zero Trust Architecture

Blog post I co-wrote with my ex colleague Bojan Zelic, around Zero-Trust Network Architectures and the custom implementation that we did around HA-Proxy and a custom Lua plugin to parse JWT tokens and do AuthN + AuthZ at the edge.

2020.06.16 - CSA - Defect Management

(Virtual) talk I gave during a Cloud Security Alliance (CSA) Swiss-chapter virtual meetup around Vulnerability Defect Management.

2019.03.26 - Network Automation

Meetup in Lausanne (CH) where I gave a talk about Network automation.

2018.10.10 - Network Automation

Meetup in Zurich (CH) where I gave a talk about Network automation.

2017.11.09 - SwiNOG #32 - RIPEinator

Lightning talk I gave at SwiNOG32, I gave a talk about a tool that I wrote (RIPEinator) to manage RIPE-NCC objects as-code.

2017.06.22 - Network CI/CD using Ansible and Gitlab

Talk that I gave during Ansiblefest 2017 in London around Network CI/CD automation with Gitlab.

2015.07.31 - OpenSSH jumphost and file-transfer

Small Blog post I wrote around SSH tunnelling.

2015.05.11 - SwiNOG #29 - Hacking Arista Appliances For Fun And Profit

Talk that I gave at SwiNOG #29, about how I tweaked / hacked Arista hardware to install another BGP routing engine.

2014.01.20 - First Steps With Arista Networks

Blog post I wrote after playing one month with some network hardware from Arista-Networks.

2013.09.09 - Softraid and Crypto for OpenBSD 5.3 / 5.4

Blog post on how to setup software-RAID + Crypto on OpeBSD 5.3 / 5.4.

2013.05.29 - LaCIE Ruggedsafe under GNU/Linux

Blog post on how to use the external USB-drive LaCIE under Linux.