Sreehari P J

Security Researcher & Systems Student

Offensive security enthusiast pivoting to low-level systems engineering. Currently exploring Linux Kernel internals and eBPF to build better defensive tooling.

github twitter linkedin email short intro →

Currently

Reading Linux Kernel Development — Robert Love

Building eBPF-based process anomaly detector

Learning Rust for systems programming

Location Kerala, India

Selected Projects

2025 rekd

Go · eBPF · C

eBPF-based process anomaly detector. Attaches fentry probes to vfs_write, scores entropy, and SIGKILLs high-entropy writers.

Year	Project	Stack	Description
2025	rekd	Go · eBPF · C	eBPF-based process anomaly detector. Attaches fentry probes to vfs_write, scores entropy, and SIGKILLs high-entropy writers.

Writing

2025

We Built a Ransomware Detector That Lives Inside the Linux Kernel

How Spider's cybersecurity team built REKD — an eBPF engine that hooks the VFS layer, scores write entropy in real-time, and kills ransomware processes before encryption finishes.

2025

How I Found a 150GB Data Leak on a Dating App (Without Even Having an Account)

A story of idle curiosity, a CloudFront XML page, and an unauthenticated S3 bucket exposing 150GB of user data from knot.dating.

2025

How I Found an Indonesian Gambling Site on .nitt.edu

Subdomain enumeration, a forgotten sports fest, and a dangling DNS that somehow survived years

All technical writing

Tools

C/C++ Go Rust eBPF Linux Kernel