Jaxon's Blog

Writing about cybersecurity, tech and whatever else I find interesting.

What Cyber Battle Australia Taught Me About Working Under Pressure
cybersecurityLatest

What Cyber Battle Australia Taught Me About Working Under Pressure

A reflection on competing in the Cyber Battle Australia Grand Final with TAFE Queensland, covering teamwork, pressure, investigation, communication, and practical cybersecurity problem solving.

6 July 2026 3 min read
cyber battle australiacybersecuritycompetitionincident response
Read post
Reviewing a Web Project for Basic Security Issues
cybersecurity

Reviewing a Web Project for Basic Security Issues

A simple web security review covering HTTPS, security headers, input handling, error messages, exposed files, dependencies, and abuse controls.

6 July 2026 4 min
Investigating Suspicious Login Activity: A Small Lab
cybersecurity

Investigating Suspicious Login Activity: A Small Lab

A small security lab showing how to investigate suspicious login activity using logs, timelines, user context, and basic incident response steps.

6 July 2026 4 min
A Simple Microsoft 365 Security Hardening Checklist
cybersecurity

A Simple Microsoft 365 Security Hardening Checklist

A simple checklist for improving Microsoft 365 security in a small business environment, with a focus on MFA, admin accounts, least privilege, audit logs, devices, and user access.

6 July 2026 4 min
Why I Built Revinal: Better Logs for Discord Moderation
cybersecurity

Why I Built Revinal: Better Logs for Discord Moderation

Discord audit logs are useful, but they do not show every detail moderators need. This post explains why I built Revinal and what it taught me about logging, permissions, and running a live service.

6 July 2026 5 min
Inside Chrome Zero-Day CVE-2026-2441
cybersecurity

Inside Chrome Zero-Day CVE-2026-2441

Google has patched CVE-2026-2441, a critical Chrome zero-day that was actively exploited in the wild. This post walks through how the vulnerability works, how exploitation chains are built, and what this incident tells us about browser security in real-world environments.

18 February 2026 5 min
AI SKILL.md Files: Prompt Injection and Registry Abuse
cybersecurity

AI SKILL.md Files: Prompt Injection and Registry Abuse

AI agent skills defined in SKILL.md files introduce a new supply chain attack surface. This article explains how prompt injection, malicious skill uploads, and registry abuse can turn simple markdown into an execution vector.

17 February 2026 4 min
Clawdbot AI Agents: Security and Risk Analysis
cybersecurity

Clawdbot AI Agents: Security and Risk Analysis

Clawdbot AI agents claim to automate tasks across local systems and cloud environments. This article analyses how agent-based AI tools operate, the cybersecurity risks they introduce, and why installing unverified agents can expose users to serious compromise.

17 February 2026 3 min