Sreehari P J

Security Researcher & Systems Student · @sr33hari

Offensive security enthusiast pivoting to low-level systems engineering. Currently exploring Linux Kernel internals and eBPF to build better defensive tooling. I enjoy reading papers, breaking things, and occasionally writing about what I find.

github twitter linkedin email resume ↗ ← back to site

Currently

Reading Linux Kernel Development — Robert Love

Building eBPF-based process anomaly detector

Learning Rust for systems programming

Location Kerala, India

Focus

🔬

Kernel Engineering — Tracing & intercepting syscalls with eBPF for behavioral analysis.

🛡️

Security Research — Finding & remediating architectural vulnerabilities.

⚙️

Systems Tooling — Writing security tooling with a focus on low overhead.

Projects

2025 ebpf-rekd

Go · eBPF · C

eBPF-based process anomaly detector. Attaches fentry probes to vfs_write, scores entropy, and SIGKILLs high-entropy writers.

2024 dns-audit

Python · DNS

CLI tool to audit subdomain DNS records for dangling pointers and takeover risks across large domains.

2024 sreeharipj.github.io

Astro · TypeScript

This site. Astro, minimal, academic research-log aesthetic.

Writing

2025 Kernel-Level Ransomware Killswitch: Intercepting vfs_write with eBPF & Go

Building a high-performance ransomware detector by tracing kernel file operations with eBPF and dropping processes before encryption happens.

2025 How I Found a 150GB Data Leak on a Dating App (Without Even Having an Account)

A story of idle curiosity, a CloudFront XML page, and an unauthenticated S3 bucket exposing 150GB of user data from knot.dating.

2025 How I Found an Indonesian Gambling Site on .nitt.edu

Subdomain enumeration, a forgotten sports fest, and a dangling DNS that somehow survived years

Tools

C/C++ Go Rust eBPF Linux Kernel