Breaking eBPF Security: How Kernel Rootkits Blind Observability ToolsDeep technical analysis of bypassing eBPF-based security solutions through kernel-level hooks targeting BPF iterators, ringbuffers, and perf eventsFeb 14, 2026·16 min read
Starting a VM as an unprivileged Linux UserHow to run Docker-in-VM-in-Docker on Segfault's ServersSep 24, 2023·3 min read
How does Linux start a process...and how to ptrace the entry point and m3ss w1th da stack.Sep 14, 2023·8 min read
WireGuard into a private LAN via CloudFlare TunnelsTL;DR: The era of only filtering ingress traffic has come to an end. Differentiating between legitimate and non-legitimate egress traffic is challenging when the attacker uses Cloudflare, Google-drive or AWS. Introduction In this article, you will le...Aug 10, 2023·5 min read
Free Linux Cloud Root ShellsA short selection of Cloud-based Linux Root Shells and their resource limits. Overview: | MEMORY | STORAGE | CPU | comment ------------------+--------+---------+-----+--------- Github Codespace | 32GB | 8GB | 4 | 20Gpbs Git...Jul 8, 2023·1 min read
Tunnel via Cloudflare to any TCP ServiceCloudflare's cloudflared tunnels are commonly used to 'publish' a web server that runs behind a firewall (e.g. making the webserver accessible from the Internet). Cloudflare restricts the traffic to HTTP-style traffic: It won't allow the publishing o...Apr 21, 2023·3 min read
LSDR - Linux and Software Defined Radio 101LSDR - Linux and Software Defined Radio 101 0x00 Preface Having started my journey w/ Linux and SDR in 2012, back then I had to manually compile lots of stuff, sometimes including a dependency hell. Still, there was already alot going on - a growing ...Sep 8, 2022·9 min read
