Cloud & AI Security Research

Hands-on exploit research at the intersection of cloud infrastructure & AI systems

$ cat mission.txt

Hands-on exploit research in controlled lab environments. Focused on LLM security, AI service misconfigurations, cloud infrastructure attack surfaces, and AI supply chain threats. All findings published with reproducible evidence.

$ ls focus/

llm-security/prompt-injection/ai-supply-chain/sagemaker/bedrock/aws/azure-openai/rag-poisoning/cloud-misconfig/ai-red-team/

$_▊

# latest_research

view all →

2026-03-01

Why AWS NAT Gateway Costs $1,000+/Month (And How to Do It for $4)

A deep-dive into the real cost of running AWS NAT Gateway at scale — including the hidden data processing fees, cross-AZ charges, and multi-environment multiplication — and a complete alternative architecture using fck-nat and VPC endpoints that cuts your bill by 95%.

awsnat-gatewaycost-optimizationvpcfck-natvpc-endpointscloud-networking

2026-03-01

Why AWS Secrets Manager Costs $1,200+/Month (And How to Do It for $15)

A deep-dive into the real cost of running AWS Secrets Manager at scale — including the hidden fees across per-secret charges, API calls, KMS, replication, and rotation — and a complete self-hosted Infisical alternative that cuts your secrets management bill by 98%.

awssecrets-managercost-optimizationinfisicalopen-sourcecloud-securitysecrets-management

2026-03-01

CVE Hunter: Top OSS Projects Are Bleeding — The $6.2M Audit You're Not Running

A full-spectrum audit of critical CVEs across the most popular open-source projects — React/Next.js, Apache Tomcat, LangFlow, sudo, Docker Desktop, and tj-actions — with real breach cost data, automated scanning infrastructure via Terraform, and a complete detection stack you can deploy for $45/month.

cveopen-sourcevulnerability-managementreactnext-jsapache-tomcatlangflowsudodockersupply-chaincost-optimization