Marwan Diallo
Security architect by trade, builder by habit. Currently watching the AI coding stack ship insecure defaults. Founder of Diallo Group.
- LabsLAB
- The Agent Has Your Session Cookie
- CSP PlaygroundLAB
- Agent Identity LabLAB
- AuthZ Lab — IDOR / BOLALAB
- Prompt Injection LabLAB
- SSRF / Cloud Metadata LabLAB
- Agent-Based vs. Network-Probe Scanners: A Coverage Case Study
- Secure-by-default Next.js Starter
- What Your SBOM Doesn't Say
- AI Codegen Audit
- The Schannel Registry Trap
- Identity LabLAB
- LDAPS Channel Binding and the Long Deprecation
- The Password Replacement and Why Your Agent Needs One Too
- RFC 8693 in Practice
- The Agent Identity Front
- Identity Is the Perimeter
- I Built a Security Scanner, Then Pointed It at Myself
- Why I Started a Security Firm in the Age of Vibe Coding
- What a Decade in Infrastructure Taught Me About AI