Hello World

The first post on lwst.io — what this blog is and who's behind it. No marketing language, no tool reviews — just notes from working in the field and studying.

April 25, 2026 · 1 min · David Leeuwestein | Translations:

This site is live. Not a big occasion, but a start.

I started this blog to write down my thoughts and findings from working in IT security — for myself, but perhaps also for others who have similar questions.

What to expect here: practical topics from working in mid-sized organisations, insights from my Master’s studies, and the occasional crossover into student politics when the two worlds meet.

All posts reflect my personal views — not those of my employer or my university.

Read more

Device Code Phishing: Why Even Passkeys Won't Save Your Microsoft Tenant

Eleven Characters, No Authentication