Posted on July 31, 2022 in Programming • Tagged with autonomous system, ASN, API, Security • 4 min read
In the Internet, each IP Address belongs to an autonomous system (AS). In this blog article, it is demonstrated how any IP address can be mapped to an AS number. The necessary information and sources to map each IP Address to an Autnomous System is provided as well, since they were not easy to find.
Posted on May 29, 2022 in Open Source • Tagged with db.js, in-memory database, key-value storage, JSON file persistance • 5 min read
Instead of using one of the many battle proofed and reliable database solutions out there, I rather created my own solution. In this quick blog post, I am announcing the release of db.js - A in-memory database with persistant file storage.
Posted on March 09, 2022 in Security • Tagged with API, Datacenter, Hosting, Cloud-Provider, IP API, Bot-Detection, VPN-Detection, IP-Intelligence, IP-Lookup • 8 min read
It is not entirely trivial to find out if an IP address belongs to a datacenter / cloud provider. In this blog article, I try to find an algorithm that outputs with high confidence if an IPv4 / Ipv6 address belongs to a hosting provider or not.
Posted on January 18, 2022 in Security • Tagged with TLS Fingerprinting, TLS 1.2, TLS 1.3 • 16 min read
In this blog post, I highlight the core differences between TLS 1.2 and TLS 1.3 and investigate how we can use several properties of the protocol to obtain fingerprinting entropy from TLS clients.
Posted on December 18, 2021 in Security • Tagged with spectre, meltdown, cache-attacks, high-precision-timing, JavaScript • 10 min read
I in this blog post, I am investigating the current state of high precision JavaScript timers. High precision timing techniques were mostly used to launch CPU-level cache attacks such as Spectre and Meltdown from the browser. I am interested in other use cases though...
Posted on November 26, 2021 in Security • Tagged with proxy, proxy-detection, bot-detection, proxy-provider, anti-scraping • 8 min read
I (maybe) found another method to detect browsers that route their traffic through SOCKS/HTTP proxies. What do you think? Is this a valid method to detect Proxies? I need your help!