Notes on Rafael Cosquiere

Migrating from WordPress to Hugo: my reasons

Wed, 22 Apr 2026 00:00:00 +0000

This article was originally written in Spanish. The English version was translated with Claude Opus 4.7 and reviewed by me personally.

With the rise of AI, and especially with Claude Code helping to write code, the way people build personal blogs and websites is shifting. One of those shifts is the migration from WordPress sites to static sites.

A well-known example is the creator of Yoast SEO, who moved his personal site from WordPress to Astro: Do you need a CMS? .

Why I Sponsor WordCamp Málaga 2026

Fri, 20 Feb 2026 00:00:00 +0000

I’m generally the kind of person who prefers to do things quietly. Work, build, and not necessarily broadcast it. But for some time now I’ve been running this personal blog where I want to gradually share my ideas and experiences.

And on that path, WordPress is always there. The CMS to which I owe a large part of my professional career and one I’ve been working with daily for over 7 years. This year I’m proud to sponsor WordCamp Málaga 2026, something I already did in 2025 but in a more low-key way.

TryHackMe – Takeover: Subdomain Enumeration with dnschef and Gobuster VHost

Sun, 10 Aug 2025 00:00:00 +0000

In this post I’ll document how I solved the Takeover machine on TryHackMe. It’s not a step-by-step write-up to follow blindly, but rather a review of what I did, what didn’t work, what I learned, and why I made certain decisions.

Setting up dnschef

The first step was to set up a local DNS server with dnschef :

sudo dnschef --fakeip 10.10.202.15 --fakedomains futurevera.thm --nameservers 9.9.9.9

I still need to dig deeper into dnschef, but it seems like a very useful tool. Basically, it acts as a DNS proxy: if a query matches the rules you define, it returns the response you specify; otherwise, it forwards the request to the nameservers you set (by default it uses Google, but here I prefer 9.9.9.9).
It requires root permissions. By default it also resolves *.futurevera.thm, although you can set this explicitly, and it listens on 127.0.0.1 unless you specify a different interface.

How to Set Up a VPN with WireGuard

Sun, 06 Jul 2025 00:00:00 +0000

In another article I cover the process of signing up with Hetzner and the server creation and basic hardening.

In this article I want to show how to set up a VPN connection with WireGuard. Specifically on a Hetzner server. I want to go a step further with the VPN configuration and create two setups:

A basic profile to have a private connection to the server through the VPN. This way I can enable SSH only via VPN and not expose it publicly.
A second profile that not only connects to the server, but routes all traffic and uses the server as an exit point, like a commercial VPN, so you can browse while hiding your IP and showing the server’s IP instead.

Initial Idea

Server on Hetzner, in this case running Debian 12.
Client: You can use whichever you prefer, since the result is a configuration file. In this case I’ll show you how to connect from a MacBook.

In my case, I’ve used it to connect to the cloud server, but you could use it to connect to your homelab server and access services on your network, like Jellyfin, Seafile, etc. Or to make your exit IP your home IP, to avoid issues with Netflix/Disney and similar services, or even to work remotely while appearing to be connected from home.

Pi-Hole on a Homelab with Docker and macvlan Network

Thu, 12 Jun 2025 00:00:00 +0000

It’s been over a year since I started with the homelab project. To be honest, in the beginning I overcomplicated everything: I installed Proxmox with several containers, a virtual router, services I didn’t need, and an endless number of rabbit holes that, while not particularly useful in the end, helped me learn and eventually simplify things quite a bit.

If Google or some AI brought you here, you probably already know what a DNS server is and what Pi-Hole is, but just in case, here’s a quick intro.

Artificial Intelligence and SEO at BECOSAN.com

Thu, 05 Jun 2025 00:00:00 +0000

Language models and real-time search agents

1. Introduction

In this report I’m going to analyze, from a close and critical perspective, how the arrival of artificial intelligence (AI) is rapidly transforming the world of SEO, and specifically how this will affect our website (BECOSAN.com). It’s important to clarify from the outset that we are in the middle of a constant process of change, full of uncertainty, where new technologies and user habits are evolving non-stop.

TryHackMe - Simple CTF - Walkthrough

Wed, 04 Jun 2025 00:00:00 +0000

This is one of the simple machines on TryHackMe, and it’s a guided CTF. Here I show the write-up of the machine resolution — I won’t include the answered questions, just the process.

Link to the machine: https://tryhackme.com/room/easyctf

Reconnaissance

A full service scan is performed on the machine using nmap.

sudo nmap 10.10.124.41 -sSV -p- -T5 --min-rate 50000 -Pn -n
Starting Nmap 7.95 ( https://nmap.org ) at 2025-06-04 06:35 CEST
Nmap scan report for 10.10.124.41
Host is up (0.054s latency).
Not shown: 65532 filtered tcp ports (no-response)
PORT STATE SERVICE VERSION
21/tcp open ftp vsftpd 3.0.3
80/tcp open http Apache httpd 2.4.18 ((Ubuntu))
2222/tcp open ssh OpenSSH 7.2p2 Ubuntu 4ubuntu2.8 (Ubuntu Linux; protocol 2.0)
Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel

Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 9.78 seconds

Several services are detected: ftp, httpd, and ssh on port 2222.