Skip to main content

Chicken Katsu

Borrowed from the dinner tables of Japan and turned into a commuter sandwich, this classic hits all the right spots. 

This Katsu Sauce will have you coming back over and over again. And possibly putting it on everything!



  • 1lb Chicken Thigh, deboned, skinned, flattened to a uniform thickness, brined
  • 1C Panko
  • 1T Paprika
  • 1C Flour
  • 2 Eggs, beaten
  • 1T Kosher Salt
  • Lemon Wedges

Katsu Sauce

  • 90g Ketchup
  • 30g Worchestershire
  • 15g Soysauce
  • 15g Mirin
  • 15g Sugar
  • 5g Dijon Mustard
  • 1g Garlic Powder

Quick Pickle Brine

  • 120g Rice Wine Vinegar
  • 80g Water
  • 15g Sugar
  • 6g Kosher Salt
  • 4 Garlic, minced


  • 2 Carrots, planked and juiliened
  • 3C Basmati
  • 1/4 Head Red or Green Cabbage, shredded
  • 2 Scallions, sliced
  • 2 Kung Pao Chili, sliced
  • Cilantro, washed, pulled


  • Before beggining, place chicken thighs in a large freezer bag with a 3% brine. (200g water w/ 6g Kosher Salt).
  • Let sit 45 minutes.
  • Prepare the rice and vegetables in the miscealaneous category.
  • Combine the Katsu Sauce ingredients and refrigerate, up to a week ahead.
  • Combine the Quick Pickle Brine, in a small pot over low heat until slat and sugar disolve.
  • Place juliened carrots and quick pickle brine in a small jar. Let sit on counter.
  • In a large heavy bottomed pot, heat 3C of neutral oil and begin breading the chicken thighs.
  • Combine flour and paprika and panko with salt.
  • Once the thighs are breaded, let sit 2-3 minutes before frying to help coating adhere.
  • Once oil has reached 375F, begin frying the thighs in batches.
  • When thickest part of meat reaches 165F, remove from heat, place on a drying grid and dust with kosher salt and lemon juice.
  • Slice on the bias or in thirds.

To Serve

Place rice in a bowl and top with chicken, veggies, and katsu sauce.
Or remove the crust of normal white bread, top with chicken, veggies, and katsu sauce.

Popular posts from this blog

Show And Tell

Once a week, our security team gathers everyone into a meeting and shares the last week’s worth of security related news and any new security initiatives. This one hour may be the most valuable meeting we attend and has the greatest impact on successful security outcomes. What is it? We call ours a Security Show & Tell. (You can call it whatever fun and exciting name fits your corporate culture.) Regardless of the name, the goal is to set aside an hour each week to share three kinds of security stories and our response to them. Stories that are in the news. Stories that impact our work. Stories that impact our lives. Author’s Note: There’s some helpful tips below on how to gather these stories.  Why you should do it There’s a lot of great reasons to do this, but I want to drive home a few really important ones. How many times has this happened to you? You wake up, open , and begin scrolling only to find out that $Vendor has a nasty zero-day and organiza

LibWebP (CVE-2023-4863)

Here is a non-exhaustive list of possible mitigations to prevent the exploitation of CVE 2023-4863 in the LibWebP library. This library has a heap buffer overflow available across all operating systems, most browsers, an exceptional number of Electron framework applications. This CVE is rated a 10 after previously being rated 8.8. This was due to an original disclosure from Google stating that Chrome was the only effected application. After investigation, it was discovered that all instances of the LibWebP library were vulnerable across all platforms. A similar CVE ( 2023-5217 ) is pending analysis for the VP8 webstream video format (a sister library to libwep.) As working proof-of-concepts are generally available to the public and Google and Apple both acknowledge threat actors and spyware vendors making use of the vulnerability, it is essential that you begin reviewing and patching all business critical applications. Patch Browsers, All of them All major and minor browsers acr

EndleSSH by Chris Wellens (github:skeeto)

  "Los Angeles CA ~ La Brea Tar Pits" by Onasill ~ Bill Badzo - - 70M Views is licensed under CC BY-NC-ND 2.0 I recently completed the SANS SEC503: Network Intrusion Detection course and while there is more than enough information to melt your brain, I picked up a few tricks I'd never seen before. I'd like to share one of the quickest and most practical here. EndleSSH by Chris Wellens is a tarpit for would be SSH brute force attackers. Clearly in the Active Defense column, EndleSSH works by pretending to be an SSH server, and strings the attempted connections along for near infinite amounts of time. An automated attack could sit for weeks tied to this connection before realizing something was wrong. Chris has a ton more information on his website above and on his GitHub. Here's a quick walkthrough:  Configuring EndleSSH on Debian based Droplets Moving SSH To move SSH run the following sed -i 's/#Port 22/Port $PORTYOUWANT/' /etc/ssh/ssh