Nefarious Plan

about

Security researcher. In the hash-and-trust business since the early P2P era — ShareReactor, eDonkey hash indexing, the original distributed trust problem before anyone called it that. The question of how you verify provenance across an untrusted network hasn't changed much; the attack surface has just gotten larger.

Spent two decades making other people's companies work. Media infrastructure, financial systems, large-scale data pipelines — the kind of work that doesn't ship a press release but does keep things from falling over. Now building WOPR Network.

This blog is for research that doesn't fit in a PR description. Technical, defensive in intent, published when something bothers me enough to write it down. If you're here from a post, assume the code is load-bearing and the words are deliberately precise.

All posts are PGP-signed. Public key on pgp.

Contact: evilgenius [at] nefariousplan [dot] com