Notes on projects, technical thinking, and case studies from building internal systems, deployment, and web application security.
A guide and technical notes on manually deploying a Next.js application to a Linux VPS. Discussing PM2 configuration, Nginx reverse proxy, and setting up domain and SSL.
Case study on developing a business company profile website using Next.js. Discussing the differences between standard and business websites, digital product catalogs, and benefits for prospective customers.
Case study on developing an online ticketing system for Waterboom. Featuring QRIS payment integration, payment proof upload, and admin verification.
Architecture concepts and experience in developing enterprise-scale operational system integrations. Reviewing data synchronization across modules, building APIs as bridges, and integrated dashboard monitoring.
Learning the standards and basics of security in web application authentication processes. Discussing password hashing, HttpOnly cookies, brute force prevention, and session management best practices based on OWASP standards.
Research and experiments in building an Intrusion Detection System (IDS) for web applications. Combining Machine Learning classification (Random Forest) and Large Language Models (LLM) to detect traffic anomalies.
A guide on securing the process of pulling private repositories from GitHub to a VPS. Discussing SSH deploy key configuration, file permissions in Linux, and the reasons why .env files must not be committed.
An in-depth analysis on when to use classic Cloudflare DNS management versus when businesses require the protection of Cloudflare Zero Trust and Tunnels for internal access.
Exploring the use of WhatsApp Bots as a distribution medium for Daily PINs in login systems. A more practical extra security alternative compared to formal MFA.
Deconstructing the data flow from physical vehicle GPS tracker devices, transmission via TCP/UDP, down to real-time coordinate points on a Next.js and Leaflet.js map dashboard.
A guide to creating early warning notifications for VPS status. Using Node.js to check CPU, RAM, and PM2 application Uptime, and dispatching automated alerts to a WhatsApp group.
Maximizing a developer portfolio's visibility on search engines. Discussing the technical implementation of meta tags, structured data (JSON-LD), image alt text optimization, and Google Search Console registration.