Backend systems engineer working on internet measurement infrastructure in Rust. Currently building LYNX, a unified L4+L7 TLS scanner.
CS undergrad at Osmania University. Reach out: syedanwaruddin08@gmail.com
Building an EASM in Rust: Bypassing SQLite Concurrent Locks with RAM Aggregation
Building an EASM in Rust: Bypassing SQLite Concurrent Locks with RAM Aggregation As I wrap up my undergraduate computer science engineering degree, I’ve been researching how organizations monitor their network perimeter. The External Attack Surface Management (EASM) market is dominated by massive platforms built for the enterprise. They are incredibly powerful, but for Small and Medium Businesses (SMBs) or IT agencies managing a handful of /24 subnets, these tools are prohibitively expensive and overly complex. ...
Unified L4+L7 bandwidth governance: rethinking Internet-scale TLS scanning
When you’re scanning the IPv4 space for TLS certificates, the bottleneck isn’t usually the SYN sweep or the TLS handshakes individually. It’s the interaction between them, and the standard tooling doesn’t model that interaction. The canonical research pipeline is ZMap piped through ZTee into ZGrab2. ZMap fires SYNs at a configured L4 rate. ZGrab2 reads verified hosts off the pipe and runs TLS handshakes at a configured worker count. They share an interface, a kernel, and an uplink, but they don’t share a rate budget. The result on dense CDN ranges is that ZGrab2’s certificate traffic can dwarf ZMap’s SYN stream, with no mechanism for the L7 surge to throttle the L4 cannon. On global anycast prefixes the same dynamic causes something more interesting: per-AS scanner detection at the CDN that neither tool would trigger alone. ...