BYTEBUILDERS

Observing hostile networks since [REDACTED]

We are an independent research collective focused on building resilient systems and studying real-world adversarial behavior. We publish. We observe. We document.

View Research Observatory

$ status --system

UPTIME: 847d 14h 22m
SENSORS: ACTIVE
THREATS: 2,847 observed (24h)

// What We Do

◈

Research

Offensive and defensive security research. We document methods, analyze threats, and share findings.

Explore →

⬡

Infrastructure

Experiments in building resilient systems. Mail security, identity management, access control.

Explore →

◎

Observation

Monitoring internet background noise. SSH probes, SMTP scans, web crawlers. We watch the network.

Explore →

// Latest Drops

View All

Dec 15, 2024

Hunting C2 channels in DNS traffic

Analyzing anomalous DNS patterns to identify command-and-control infrastructure.

forensics threat-intel

Dec 8, 2024

Hardening mail infrastructure against spoofing

Implementing SPF, DKIM, and DMARC for enterprise mail security.

hardening mailsec

Nov 28, 2024

30 days of SSH honeypot observations

Patterns and insights from a month of SSH brute-force attack data.

honeypots research