İTÜ Ninova ve OBS'yi yapay zekaya bağladım: İTÜ MCP →
Why I built İTÜ MCP: a local MCP server that connects an ITU student's Ninova (LMS) and OBS (student portal) to Claude, Cursor, and Codex, so you can ask about assignments, grades, and transcripts in plain language — without your password ever leaving your machine.
I built a security scanner for MCP servers →
Nobody was checking the tool descriptions MCP servers feed your agent. MCPRadar does: tool poisoning, prompt injection, and rug-pull detection, with SARIF output and SQLite snapshot diffing. Here's why I built it and what it does not do.
ESP32 ile Google Login Sayfası Klonlama ↗
A hands-on captive-portal experiment: using a cheap ESP32 board running Bruce firmware to stand up a fake "Free WiFi" access point and clone Google's login page in a lab setting — why the attack is so cheap to run and what defenders should watch for.
Trojan:Win32/ClickFix.ZG ↗
Analysis of ClickFix, a social-engineering malware family that tricks users into running malicious commands themselves while thinking they are fixing a problem — how Microsoft Defender flags it and how the lure works.
Blind SQL Injection with Conditional Errors ↗
Walkthrough of a blind SQL injection where no data is returned directly: inferring database contents from server behaviour (status codes, error messages, response timing), worked through a PortSwigger Web Security Academy lab.