Allen's Blog

Surge + sing-box: A Solution for Protocols Not Supported by Surge

Fri, 27 Feb 2026 10:00:00 +0000

Using a layered architecture to combine Surge's UI with sing-box's protocol support, enabling VLESS/Hysteria2 protocols on macOS.

AI-Friendly Programming: The Paradigm Shift from 'Readability' to 'Reasonability'

Sat, 17 Jan 2026 10:00:00 +0800

A deep dive into how code quality standards are evolving from being "human-readable" to "AI-reasonable" in the era of AI-assisted development. Covers type systems, RAG layout optimization, and declarative programming.

My Blog Engineering Practice: From Static Build to Automated Ops

Tue, 06 Jan 2026 18:30:00 +0800

A deep dive into the engineering solutions of this blog: covering Docker deployment, Remark42 comment system integration, self-hosted Nginx image hosting, Grafana monitoring, and a Python-based automated cover generation scheme.

Practice with gopacket in Go: Implementing a High-Performance SYN Scanner from Scratch

Tue, 06 Jan 2026 10:00:00 +0800

A deep dive into using Go's gopacket library to bypass the OS protocol stack, manually construct TCP SYN packets, and handle responses to build a simple yet efficient SYN port scanner.

Complete Record of Troubleshooting CPU Jitter in uWSGI + Django Stability Tests

Mon, 08 Dec 2025 10:00:00 +0800

A complete record of troubleshooting periodic CPU jitter in a uWSGI + Django application during stability testing, from initial GC misdiagnosis to discovering worker restarts as the true culprit, summarizing configuration optimization and troubleshooting methodology.

Nginx Configuration Developers Need to Know: Load Balancing, Health Checks, and Rate Limiting Explained

Thu, 04 Dec 2025 20:00:00 +0800

In-depth analysis of Nginx upstream load balancing strategies, passive health check mechanisms, timeout configuration, and rate limiting methods to build high-performance and high-availability Web architectures.

Naabu Technical Deep Dive: The Modern Evolution of Port Scanners Through the Lens of Nmap and Masscan

Mon, 13 Oct 2025 00:00:00 +0000

A deep dive into Naabu, a high-performance port scanner. Comparing it with Nmap and Masscan to understand its architecture and efficiency.

A First Look at Masscan Scanning Technology

Wed, 24 Sep 2025 10:00:00 +0800

A deep dive into Masscan's implementation details, analyzing how it sends and receives packets at the user level, distinguishes its own responses, and its target randomization and high-performance network card access technologies.

Building an Intelligent Attack and Defense Knowledge Base: Vulnerability Management Practices Combining AI Technology

Fri, 12 Sep 2025 10:00:00 +0800

Sharing our practical experience in building an intelligent attack and defense knowledge base, utilizing AI technology to optimize vulnerability information management and PoC generation workflows.

Application of SYN Cookies in Port Scanning

Thu, 04 Sep 2025 00:00:00 +0000

Exploring the clever application of SYN Cookies in port scanning (e.g., Masscan/ZMap), analyzing how stateless scanning boosts performance.

Application of Token Bucket Rate Limiting Algorithm in Scanners

Fri, 29 Aug 2025 21:00:00 +0800

Detailed explanation of the Token Bucket algorithm's application in network scanner rate limiting, balancing scan speed with network stability.

About Me

Tue, 12 Aug 2025 00:00:00 +0000

I am a backend engineer focused on Cybersecurity, primarily engaging in Golang development for security scanning, vulnerability detection, and automation.

With over 5 years of Python experience and deep research into Go over the past year, the systems I build combine high performance and reliability in large-scale security environments. The core of my work is translating security research into production-ready scanning tools.

Core Expertise

Vulnerability Scanning — Building customized scanning engines to identify security flaws in networks, services, and applications.
Network Reconnaissance — Integrating tools like Nmap to improve detection accuracy and designing scalable asset discovery pipelines.
Security Automation — Automating repetitive and large-scale scanning tasks to increase coverage and reduce manual workload.
Concurrency & Distributed Systems — Leveraging Go’s concurrency model to execute large-scale parallel scans efficiently and stably.
Error Handling & Resilience — Designing robust error propagation strategies to ensure fault tolerance in scanning workflows.

My Cybersecurity Direction

I approach Cybersecurity Engineering from two perspectives: Research and Software Architecture:

Why Logstash's Syslog Plugin is udp_tcp

Sat, 30 Dec 2023 10:30:00 +0800

An in-depth analysis of the Logstash syslog plugin's UDP and TCP implementation, explaining why it supports both and best practices for log collection.

Reflections on One Year of Golang: The Beauty of a Language Easy to Learn but Hard to Master

Sat, 11 Nov 2023 21:00:00 +0800

Reflecting on a year with Golang, transitioning from Python, and mastering concurrency, error handling, and interface design.

Common Pitfalls and Solutions When Using Nmap

Wed, 20 Sep 2023 00:00:00 +0000

A summary of common pitfalls encountered when using Nmap for network scanning, along with practical avoidance guides and parameter tuning suggestions.

Chatting about Git

Wed, 13 Sep 2023 00:00:00 +0000

Sharing some insights on using Git, as well as practical experience combining branches and commits in project development.

Detailed Explanation of Port Scanning Principles

Sat, 02 Sep 2023 20:30:00 +0800

A comprehensive explanation of port scanning principles, covering TCP full connect, SYN half-connect, UDP scanning, and their pros and cons.