Low-level systems. Security. Debugging.
Technical writeups on Linux internals, reverse engineering, and the art of making computers do what you tell them.
LD_PRELOAD - how Linux lets you win the symbol race (and why that is dual-use)
The dynamic linker does not care whether you are debugging memory corruption, faking time for a test suite, or hiding a directory entry. It loads shared objects in an order you can influence, resolves symbols once, and y
Deep Dive into Segmentation Fault
A segmentation fault (often called _segfault_) occurs when a program attempts to access a memory address that it is not allowed to read or write. The operating system detects the invalid access and terminates the process
How yt-dlp Actually Works: A Deep Dive
What you'll learn: The complete technical breakdown of how yt-dlp downloads YouTube videos, from URL to final file.
LD_PRELOAD - how Linux lets you win the symbol race (and why that is dual-use)
The dynamic linker does not care whether you are debugging memory corruption, faking time for a test suite, or hiding a directory entry. It loads shared objects in an order you can influence, resolves symbols once, and y
Slowloris - The Quiet Connection Killer. What It Is, How to Detect It, and How to Defend
Slowloris is a stealthy application-layer DoS technique that holds connections open to exhaust server resources. Learn how it works conceptually, what symptoms to monitor, and practical, safe mitigations and detection st
The missing mm_struct: How Linux leaked root file descriptors
For years, the Linux kernel harbored a subtle lifetime bug in how it handled task dumpability during process exit. It was conceptually flagged by Jann Horn in 2020, but the practical exploitability of this pattern—allowi
Snapper - Technical Overview
Snapper discovers and stores public Instagram profile snapshots and selected post metadata over time for later analysis. It:
Deep Dive into Segmentation Fault
A segmentation fault (often called _segfault_) occurs when a program attempts to access a memory address that it is not allowed to read or write. The operating system detects the invalid access and terminates the process
How yt-dlp Actually Works: A Deep Dive
What you'll learn: The complete technical breakdown of how yt-dlp downloads YouTube videos, from URL to final file.