<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"><channel><title>Pablo Huertas</title><description>Cybersecurity &amp; Infrastructure Notes.</description><link>https://pablohuertas.dev/</link><item><title>Why most vulnerability scans miss what matters: A practitioner&apos;s take</title><link>https://pablohuertas.dev/posts/why-most-vulnerability-scans-miss-what-matters-a-practitioner-s-take/</link><guid isPermaLink="true">https://pablohuertas.dev/posts/why-most-vulnerability-scans-miss-what-matters-a-practitioner-s-take/</guid><description>Automated scans only see the surface. Learn the 7 categories scanners miss, how to chain low-severity findings, and how to write reports that actually get fixed.</description><pubDate>Thu, 28 May 2026 19:04:08 GMT</pubDate></item><item><title>Building a Home Lab for SIEM Practice with Wazuh/Elastic</title><link>https://pablohuertas.dev/posts/building-a-home-lab-for-siem-practice-with-wazuh-elastic/</link><guid isPermaLink="true">https://pablohuertas.dev/posts/building-a-home-lab-for-siem-practice-with-wazuh-elastic/</guid><description>Set up a Wazuh and Elastic SIEM home lab from scratch: network design, agent deployment, custom detection rules, and attack simulations to build real security skills.</description><pubDate>Mon, 25 May 2026 12:22:02 GMT</pubDate></item><item><title>Why WordPress sites get compromised: Root cause patterns from real incident reviews</title><link>https://pablohuertas.dev/posts/why-wordpress-sites-get-compromised-root-cause-patterns-from-real-incident-reviews/</link><guid isPermaLink="true">https://pablohuertas.dev/posts/why-wordpress-sites-get-compromised-root-cause-patterns-from-real-incident-reviews/</guid><description>Most WordPress breaches follow the same patterns: outdated plugins, weak credentials, exposed endpoints. Learn the root causes and how to prevent them.</description><pubDate>Tue, 19 May 2026 13:00:00 GMT</pubDate></item><item><title>Hardening a Linux VPS: A practical guide beyond the checklist</title><link>https://pablohuertas.dev/posts/hardening-a-linux-vps-a-practical-guide-beyond-the-checklist/</link><guid isPermaLink="true">https://pablohuertas.dev/posts/hardening-a-linux-vps-a-practical-guide-beyond-the-checklist/</guid><description>Harden a Linux VPS beyond the checklist: SSH, UFW, Fail2ban, sysctl, AIDE and backups, with diagrams and production-ready code snippets.</description><pubDate>Thu, 14 May 2026 17:41:09 GMT</pubDate></item></channel></rss>