Recent Blogs

How I Stopped Hackers Using One Fail2Ban Rule

I analysed 48 hours of Nginx access logs from my own VPS and found 11 attack types — web shell scans, .env theft, PHPUnit RCE, path traversal, and more. Here's exactly how each attack works, with real log evidence, and how a single Fail2Ban rule stopped all of them.