[ news ]   [ Nmap/Ncrack ]   [ projects ]   [ papers ]   [ netsec ]   [ about ]   rss twitter
--- [ About ] ---

whois ithilgore:

I am ithilgore, a computer security and low level networks enthusiast. I am mainly interested in gathering knowledge about network internals and mastering the art of network exploration and exploitation. The field of protocol implementation is one of my primary concerns, since it acts as the basis to comprehend what is happening behind the scenes. We have all seen that new threats are discovered every day on the application level, but none are as serious as the flaws found in the protocols that the whole structure of the internet is based upon. Unpredictable end cases are certainly lying even in the most secure of implementations, since the complexity involved does not often allow even the creator to take every single unimaginable bug into account. This is where the big journey of exploring and exploiting these holes begins. I am currently studying the implementation of TCP/IP with the guidance of the Stevens tomes (mainly TCP/IP Illustrated, Volume 2:The Implementation) and messing with the kernel net sources of FreeBSD and Linux. You can contact me in a way similar to this: 

		#define addr "ithilgore.ryu.L"
		#define dom "gmail"
		int s = socket(AF_INET, SOCK_DGRAM, 0);
		struct sockaddr_in ithaddr;
		buf[26]; 
		strlcpy(buf, addr, 16);
		strlcat(buf, dom, sizeof(buf));
		inet_pton(AF_INET, buf, &ithaddr.sin_addr);
		...

		GPG key

About sock_raw:

sock_raw is my personal web site and project/ideas main connect(2)ion to the outer world. If you are already wondering where the name actually stems from, you can always rtfm of socket(2). I 'll provide a quick definition however: SOCK_RAW is one of the ultimate powers the OS can give you over doing some serious stuff on low level network programming. It is the ability to create and send your own hand-crafted network packets, filling manually all header fields with whatever values you want. Most serious network security tools are based on or certainly use this sockets API capability.

Areas of interest:

  • Low level network programming
  • Network internals - Protocols implementation
  • Local/Remote Security vulnerabilities
  • Most low level cs stuff