About

About Me

Hello! Welcome to my blog: "Watch This Space". My name is Noah Gregory. I am a software engineer by profession and a security researcher by hobby. Software engineering pays the bills, but I've always been passionate about cybersecurity and security research. I love diving deep and learning everything I can about a piece of software; how it ticks and where the potential weak points are. I spend my free time reverse-engineering software, looking for vulnerabilities, and reporting those I find to the software vendors.

About This Blog

Why The Name "Watch This Space"?

I chose the name "Watch This Space" because I want people to feel the same excitement I feel when I read vulnerability disclosures or watch security talks on YouTube. I find it so fascinating to learn all about the internals of software, how white-hat hackers are able to break this software, and what (if anything) the vendors do to mitigate or resolve the vulnerabilities. The name "Watch This Space" is a call to readers to keep an eye on this blog, but it's also a general call to be aware of the larger work of security research as a whole. I'm certainly not the only security researcher out here. Where possible, I will try to highlight the work of other security researchers that I find interesting and/or impactful.

Some may say security research and bug hunting should prioritize seriousness over spectacle. I would agree. While the term "watch this space" may seem to lend more towards the former, I believe it works as a hook to get people interested. Once you have their attention, you can emphasize the seriousness of the matter. Also, I personally believe that security research shouldn't be entirely devoid of spectacle, and sometimes it's impossible to control the level of spectacle it becomes once you put your research out into the public. Regardless, in this blog, I hope to strike a good balance of spectacle and seriousness.

Technical Notes About This Blog

The code for this blog is written entirely by me. Handwritten HTML and CSS, no JavaScript, no images (yet), and the only external resources are two fonts and their associated CSS. Even the Atom feed for this blog is handwritten by me. This is intentional. It keeps things simpler, and it also loads very quickly. While I don't want to disparage modern web development with all its JavaScript and compiling and transpiling and bundling and server rendering and such, sometimes all you need is a simple motherf***ing website (note: don't click the previous link if you are, in any way, averse to profanity).

Also, yes, you can subscribe to this blog. Just take the Atom feed link from the above paragraph and drop it into the RSS reader of your choice. Yes, your RSS reader probably supports Atom feeds, even if it doesn't advertise it. An Atom feed is nice because it doesn't track you. You might think I could just look at the server logs for requests to the feed URL, but I can't. I host this blog on GitHub Pages through this repository. GitHub might be keeping logs somewhere but they don't share them with me. I don't even know if anyone is even reading this now. So, go ahead and subscribe! I'll never know you did :)

I also pride myself in making this blog as accessible as possible. I try my best to use HTML as it's intended: with proper use of all semantic elements (sectioning, emphasis, etc.) and all other accessibility features. I also aim to make this blog fully conformant at Level AA with the WCAG 2.2 Standard. If you are using assistive technology and are having trouble using this blog, or have any suggestions on how I can make it more accessible, please don't hesitate to email me. I welcome and value your feedback and suggestions.

As a final note, this blog does make use of some newer CSS features; such as CSS nesting and Oklab color functions. If the blog looks visually strange to you, you may have an older browser that cannot use these newer features. Please upgrade your browser version to (hopefully) view this blog as intended. You should also be keeping your browser up to date in general, as these updates also often include important security patches that keep you and your computer secure.

The Current State

At the time of writing, this blog is empty, but I hope to start posting soon. Please remember that I do this in my free time, so I may not post often. I plan to hopefully post about vulnerabilities I find (obviously only after they have been patched by the vendor). If that's something that interests you, feel free to watch this space.