About

Hi, I'm Fernando Guisso.

I'm a Security Software Engineer at willbank where I lead the AppSec practice and its internal authentication platform.

I build solutions that make security a natural part of the developer workflow—helping engineers ship safely without losing speed. The best security is the one that ships with the code.

In my spare time I obsess over my home lab: explore experiments tagged home-lab or dive into the gritty details on my wiki.

See posts Full archive

featured projects

Projects I'm building right now

See projects

Project
sfer.nvim

Lightweight Neovim plugin that displays SARIF files, perfect for CodeQL runs and my daily AppSec tooling.
open ↗
Project
Dojo Shield

Hands-on exercise to train secure development through guided missions with real-time feedback.
open ↗
Project
Home Lab

My home infrastructure running AppSec pipelines, ZFS storage, Kubernetes, and automations—full notes live on the wiki.
open ↗

new articles

Here's what I'm writing lately

Dec 6, 2025
Open source site analytics

What I learned from self-hosting Tianji: PV/UV without cookies, campaigns, and reliability lessons.

1,113 words · 6 min
Creative ler artigo ↗
Aug 26, 2025
Cursor Rules and Secure Code Review

How to use Cursor Rules and checklists adapted to the project context to optimize security reviews in modern applications.

919 words · 5 min
Idea ler artigo ↗
Jun 10, 2025
Top 5 Rust Vulnerabilities Created with AI

Summary of the 5 most common vulnerabilities in Rust applications, generated with AI support and based on RustSec data.

586 words · 3 min
Lifestyle ler artigo ↗

Hi, I'm Fernando Guisso.

Projects I'm building right now

sfer.nvim

Dojo Shield

Home Lab

Here's what I'm writing lately

Open source site analytics

Cursor Rules and Secure Code Review

Top 5 Rust Vulnerabilities Created with AI