Writing

Things I found while building

18 March 2026PDF Changer

Are online PDF tools safe? I checked the network traffic

Network captures from iLovePDF, Smallpdf, and a client-side alternative. What Google Analytics knows about your merged tax return.

18 March 2026threadr

How anti-bot systems detect timing patterns (and what actually works)

Poisson is detectable at p < 0.001. Lévy stable passes at p = 0.68. KS test results, Chambers-Mallows-Stuck sampling, and why the heavy tail matters.

18 March 2026degauss

31.6 bits is enough to identify you. I measured how much your accounts leak.

Sweeney showed ZIP + DOB + sex uniquely identifies 87% of Americans. I built a tool that computes your actual exposure. The maths, the results, what you can do.

18 March 2026ε-tx

How private is Monero? Ring entropy says 1.5 bits, not 4

OSPEAD shows 80% of real spends are the newest ring member. Effective anonymity drops from 16 to ~3. Inverse-OSPEAD for better decoy selection.