Sreehari P J

Security Researcher & Systems Student · @sr33hari

Offensive security enthusiast pivoting to low-level systems engineering. Currently exploring Linux Kernel internals and eBPF to build better defensive tooling. I enjoy reading papers, breaking things, and occasionally writing about what I find.

github twitter linkedin email resume ↗ ← back to site

Currently

Reading Linux Kernel Development — Robert Love

Building eBPF-based process anomaly detector

Learning Rust for systems programming

Location Kerala, India

Focus

🔬

Kernel Engineering — Tracing & intercepting syscalls with eBPF for behavioral analysis.

🛡️

Security Research — Finding & remediating architectural vulnerabilities.

⚙️

Systems Tooling — Writing security tooling with a focus on low overhead.

Projects

2025 rekd

Go · eBPF · C

eBPF-based process anomaly detector. Attaches fentry probes to vfs_write, scores entropy, and SIGKILLs high-entropy writers.

Writing

2025 We Built a Ransomware Detector That Lives Inside the Linux Kernel

How Spider's cybersecurity team built REKD — an eBPF engine that hooks the VFS layer, scores write entropy in real-time, and kills ransomware processes before encryption finishes.

2025 How I Found a 150GB Data Leak on a Dating App (Without Even Having an Account)

A story of idle curiosity, a CloudFront XML page, and an unauthenticated S3 bucket exposing 150GB of user data from knot.dating.

2025 How I Found an Indonesian Gambling Site on .nitt.edu

Subdomain enumeration, a forgotten sports fest, and a dangling DNS that somehow survived years

Tools

C/C++ Go Rust eBPF Linux Kernel