|
whois ithilgore:
I am ithilgore, a computer security and
low level networks enthusiast. I am mainly interested in gathering
knowledge about network internals and mastering the art of network
exploration and exploitation. The field of protocol implementation is
one of my primary concerns, since it acts as the basis to comprehend
what is happening behind the scenes. We have all seen that
new threats are discovered every day on the application level, but
none are as serious as the flaws found in the protocols that the whole
structure of the internet is based upon. Unpredictable end cases are
certainly lying even in the most secure of implementations, since the
complexity involved does not often allow even the creator to take every
single unimaginable bug into account. This is where the big journey of
exploring and exploiting these holes begins.
I am currently studying the implementation of TCP/IP with the guidance
of the Stevens tomes (mainly
TCP/IP Illustrated, Volume 2:The Implementation) and
messing with the kernel net sources of FreeBSD and Linux. You can
contact me in a way similar to this:
#define addr "ithilgore.ryu.L"
#define dom "gmail"
int s = socket(AF_INET, SOCK_DGRAM, 0);
struct sockaddr_in ithaddr;
buf[26];
strlcpy(buf, addr, 16);
strlcat(buf, dom, sizeof(buf));
inet_pton(AF_INET, buf, &ithaddr.sin_addr);
...
GPG key
sock_raw is my personal web site and project/ideas
main connect(2)ion to the outer world. If you are already
wondering where the name actually stems from, you can always rtfm of
socket(2). I 'll provide a quick definition however: SOCK_RAW is one
of the ultimate powers the OS can give you over doing some serious
stuff on low level network programming. It is the ability to create and
send your own hand-crafted network packets, filling manually all header
fields with whatever values you want. Most serious network security
tools are based on or certainly use this sockets API capability.
- Low level network programming
- Network internals - Protocols implementation
- Local/Remote Security vulnerabilities
- Most low level cs stuff
|