I'm a Security Engineer from India. I'm here to write about Security. I have the amazing opportunity to work with distributed Linux systems, web services and applications along with the delicate software development lifecycle and ecosystem. I spend a some of my spare time playing Capture The Flag (CTF) events, researching vulnerabilities, auditing open source software and hunting for vulnerabilities in the wild. I hope you find my work helpful in your quest.
- bpfdoorpoc: PoC for bpfdoor rootkit's eBPF technique and effective detection
- python-logging.config-exploit: PoC for Python's security consideration "logging: Logging configuration uses eval()"
- termspy: PoC terminal keylogger using ptrace
- ptrace_code_injection: PoC for injecting code into existing process with ptrace
- vscode_trusted_rce: PoC for code execution from loading a trusted project in VSCode
- PyCQA/bandit (Python SAST) plugin: logging_config_insecure_listen
- CIS Benchmark for Linux: 1.5.3 - Ensure ptrace_scope is restricted
- Improvement to osquery pack Behavioral_Reverse_Shell
- Zammad (Ruby code review)