The EngTools Blog

Engineering deep-dives, tool teardowns, and lessons learned building in the open.

By ANBMZ LLC

4 Posts

Server-Side Security Risks When Fetching User-Supplied URLs

When you build a tool that fetches URLs on behalf of users, you hand attackers a powerful weapon. This post walks through the real threats — SSRF, DNS rebinding, open redirects, and more — and how we harden against each one in our EngTools backend.

Mar 30, 2026 · 11 min read
Why I Built Blinky: Saving My Eyes from 14-Hour Coding Sessions

How I built a native macOS menu bar app to fight eye strain with smart blink reminders, gamified stats, and non-intrusive UI — because the 20-20-20 rule is useless if you can't remember to follow it.

Feb 22, 2026 · 4 min read
How I Built an AI That Conducts Mock Coding Interviews

The idea behind intervu.dev, the tech decisions that shaped it, and the hard parts of making an AI interviewer that feels real — voice, code execution, and all.

Feb 20, 2026 · 8 min read
How I Built a Browser Game You Can Play With a PlayStation Controller

Building a game you play on PC with a console controller—no Steam, no launcher, just open a webpage and plug in the pad. The idea, the Gamepad API, and how I structured Dodge Run.

Feb 10, 2025 · 6 min read