Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

Core Principles

Computer systems, protocols and applications are all built on abstractions.

These abstractions help us reason about higher level concepts and speed up development by hiding complexity and to avoid reinventing the wheel.

However, in security research it's crucial to understand the underlying reality behind these abstractions. Security vulnerabilities often arise from a mismatch between these layers of abstraction.

I love to understand how things really work. When you start to dig into the lower level systems, you develop a good intuition for how a system operates. I've always had a tendency to want to build everything from scratch, as if its cheating to use something that you don't fully understand. This can hold you back but now with the advent of AI, learning and building systems has become much easier.

My goal with MRPF is to try to keep the underlying reality front and center. This sometimes comes at the cost of less intuitive or more verbose interfaces, but differentiates the toolset from most other tools out there.

TODO: Write my blog around misconceptions around hosts, ips, domains, root paths, dns, TLS SNI etc.