Hello, I'm Tolu.
Security Engineer. building better defenses. Automating security into pipelines, break things before production does, and share what I learn for others facing the same challenges.
Recent Post
Learning by breaking, teaching by sharing. Security insights for builders.

Software Supply Chain Security on AWS: Keyless Signing, SBOMs, and SLSA Provenance
A GitHub Actions pipeline that builds a container image, gates it on fixable CVEs, signs it with Cosign keyless, attaches SLSA provenance, and refuses to call it deployable unless all of that verifies against the exact repo that built it.
Read more

Unified Threat Detection on AWS: Security Hub, GuardDuty, and Automated EC2 Isolation
How to wire Security Hub, GuardDuty Extended Threat Detection, and a Step Functions pipeline together so a HIGH finding automatically quarantines the affected EC2 instance within seconds.
Read more

Runtime Security on EKS: Tetragon eBPF Enforcement, Falco Detection, and GuardDuty
How to stack three runtime security layers on EKS so one kills processes in-kernel, one generates a queryable alert history, and one catches what the other two miss using AWS threat intelligence.
Read more
Side Projects & Tooling
Some of my recent builds and contributions ~ worth sharing

AWS Automated Vulnerability Remediation System
Event-driven vulnerability patching solution that automatically detects, validates, and applies security updates across AWS infrastructure with minimal manual intervention.

PolicyGuard
IaC security scanner with 15+ AWS services coverage, OPA policies, and CI/CD integration

CredScan
Security scanner that identifies credentials, API keys, and sensitive information across codebases, archives, and web applications. Features intelligent pattern recognition with 400+ signatures, binary file analysis, technology-aware detection for cloud/container environments, and context-aware scanning that minimizes false positive
My code lives on GitHub
I build. I experiment. I sometimes even document it. Check out my GitHub to see what I'm up to.