https://chevauxenbois.comHarsh Kahate on information security, GRC engineering, AI security and governance, data privacy, open source, writing, and languages.https://chevauxenbois.com/writing/2026-05-05-llm04-2025-data-and-model-poisoning/Welcome to Securing the Stochastic : A Field Guide to the OWASP LLM Top 10, part 4 ; LLM04:2025 — Data and Model Poisoning.Tue, 05 May 2026 00:00:00 GMThttps://chevauxenbois.com/writing/2026-03-22-owasp-llm03-2025-supply-chain-vulnerabilities-the-threat-that-arrives-before-you-write-a-single/Welcome to the part 3 of the series Securing the Stochastic — A Field Guide to the OWASP LLM Top 10.Sun, 22 Mar 2026 00:00:00 GMThttps://chevauxenbois.com/writing/2026-02-23-owasp-llm02-2025-sensitive-information-disclosure/When Your AI Becomes an Accidental WhistleblowerMon, 23 Feb 2026 00:00:00 GMThttps://chevauxenbois.com/writing/2026-01-08-we-are-no-longer-securing-databases-we-are-securing-probabilistic-reasoning-engines/Part 1: The Core Paradigm Shift & Prompt Injection (LLM01)Thu, 08 Jan 2026 00:00:00 GMThttps://chevauxenbois.com/writing/2025-12-01-practical-approach-to-what-you-need-to-know-about-the-sha1-hulud-supply-chain-attack/Section 1—Executive Summary (Non-Technical)Mon, 01 Dec 2025 00:00:00 GMThttps://chevauxenbois.com/writing/2025-11-13-what-is-grc-and-grc-engineering-and-why-is-it-more-complicated-than-you-think/Imagine you're fed up with corporate and you start a filter coffee stand in Namma Bengaluru. In most non-technical fashion: you buy coffee…Thu, 13 Nov 2025 00:00:00 GMThttps://chevauxenbois.com/writing/2025-08-04-hardening-your-kubernetes-fortress-part-1-auditing-with-kube-bench/Kubernetes has won the container orchestration war, but managing its security can feel like defending a medieval fortress. With countless…Mon, 04 Aug 2025 00:00:00 GMThttps://chevauxenbois.com/writing/2025-04-22-cloud-control-freak-iam-taming-access-the-grc-engineering-way/Welcome to the series (Cloud Control Freak—the GRC way) of articles focused on GRC Engineering <> AWS. This series is for all GRC…Tue, 22 Apr 2025 00:00:00 GMThttps://chevauxenbois.com/writing/2025-01-27-put-privacy-first-the-7-point-guide-to-privacy-by-design/As we celebrate the Data Privacy Day (28th January 2025), the concerns related to Data Privacy keep on increasing across the globe with…Mon, 27 Jan 2025 00:00:00 GMThttps://chevauxenbois.com/writing/2024-12-14-rbi-s-master-direction-on-it-outsourcing-ensuring-compliance-and-building-trust/It has been more than a year since the Reserve Bank of India (hereafter referred as \"RBI\") launched the Master Direction on Outsourcing of…Sat, 14 Dec 2024 00:00:00 GMThttps://chevauxenbois.com/writing/2024-11-30-divide-and-conquer-shared-security-in-the-cloud/In today's digital age, cloud computing has become an indispensable tool for businesses of all sizes. The flexibility, scalability, and…Sat, 30 Nov 2024 00:00:00 GMThttps://chevauxenbois.com/writing/2024-11-04-strengthening-your-aws-security-posture-with-security-hub/There have been a lot of InfoSec groups/forums where questions around AWS Security Hub are asked. I have observed that the people asking…Mon, 04 Nov 2024 00:00:00 GMThttps://chevauxenbois.com/writing/2024-06-15-all-you-need-to-know-and-do-for-becoming-soc-2-type-ii-compliant/Why do you need a SOC 2 Type II report, what does it mean and how to get it?Sat, 15 Jun 2024 00:00:00 GMThttps://chevauxenbois.com/writing/2024-02-25-from-numbers-to-impact-making-sense-of-cvss-v4-0-score-with-practical-examples/In today's ever-evolving cybersecurity landscape, prioritising vulnerabilities effectively is critical. The Common Vulnerability Scoring…Sun, 25 Feb 2024 00:00:00 GMThttps://chevauxenbois.com/writing/2024-02-10-the-real-meaning-of-owasp-top-10-mobile-2024-list-from-security-and-privacy-viewpoints/Recently, the final list of top 10 mobile application vulnerabilities has been released by OWASP. The last one was released in 2016. The…Sat, 10 Feb 2024 00:00:00 GMThttps://chevauxenbois.com/writing/2023-11-05-a-deep-dive-into-zero-trust-architecture/Any organisation or business becomes successful only if it is trusted by its customers and investors. When it comes to organisations…Sun, 05 Nov 2023 00:00:00 GMThttps://chevauxenbois.com/writing/2023-09-16-personally-identifiable-information-pii-why-so-important-and-how-to-protect-it/Recently, the Government of India brought the DPDP (Digital Personal Data Protection) act and since then, I have been reading a lot of…Sat, 16 Sep 2023 00:00:00 GMThttps://chevauxenbois.com/writing/2023-05-27-guarding-your-virtual-fortress-a-step-by-step-guide-to-install-wazuh-on-a-virtual-machine-part/While I was trying to explore more and more things in the defensive security, I thought of learning in detail about SIEM and Wazuh. The…Sat, 27 May 2023 00:00:00 GMThttps://chevauxenbois.com/writing/2023-03-05-cool-linux-commands/Some days back when I was bored at work and trying to do some random things on my Linux terminal, I came across a very funny and unusual…Sun, 05 Mar 2023 00:00:00 GMThttps://chevauxenbois.com/writing/2022-11-02-hack-android-device-using-linux/In this article, we will be hacking an android device using Kali Linux. You need only a Linux based machine, a stable internet connection…Wed, 02 Nov 2022 00:00:00 GMT