Joined January 2019
- Tweets 175
- Following 104
- Followers 78
- Likes 180
9 Photos and videos
Niklas Niere/JonSnowWhite retweeted
12 May 2025
🚨 Our S&P’25 paper reveals rising regional censorship in China.
In addition to the national Great Firewall, Henan province runs its own firewall. Though less sophisticated, it’s more volatile and aggressive—once blocking 10× more domains than the GFW.
👉 gfw.report/publications/sp25…
12
26
19,299
4 Apr 2025
China advanced its QUIC censorship.
The GFW now decrypts QUIC Initial packets and extracts the hostname from the SNI extension—similar to its censorship of TLS over TCP.
My colleague details our findings in our new blog post:
upb-syssec.github.io/blog/20…
3
3
542
Niklas Niere/JonSnowWhite retweeted
12 Dec 2024
Congrats to Fabian Bäumer, Marcus Brinkmann, Nurullah Erinola, Sven Hebrok, Nico Heitmann, Felix Lange, Marcel Maehren, Robert Merget, Niklas Niere, Maximilian Radoy, Conrad Schmidt, Jörg Schwenk, Juraj Somorovsky on the 2nd #ACSAC2024 Cybersecurity Artifacts Impact Award 👏👏👏
3
11
1,052
Niklas Niere/JonSnowWhite retweeted
12 Dec 2024
Great presentations by all four #ACSAC2024 Cybersecurity Artifacts Impact Award finalists! đź‘Źđź‘Źđź‘Ź A difficult decision for the jury indeed!
1
3
506
20 Nov 2024
Unencrypted HTTP/2 is uncensored in China and Iran. While mostly used in conjunction with TLS, HTTP/2 can be used standalone to circumvent HTTP(S) censorship. We outline this finding in a blog post upb-syssec.github.io/blog/20… and summarize the takeaways below.
1
1
4
528
20 Nov 2024
1. Unencrypted HTTP/2 is uncensored in China and Iran. We suspect similar behavior in other countries.
2. Unencrypted HTTP/2 is supported by up to 6.28% of servers. Smaller servers and censored websites show higher support than large websites.
1
1
139
20 Nov 2024
3. Unencrypted HTTP/1.1 is still supported by around 20% of servers.
4. To easily analyze a website for unencrypted HTTP support, we provide a small tool: github.com/UPB-SysSec/Does-I…
1
90
11 Nov 2024
Last week, Russia started blocking the Encrypted Client Hello(ECH). This prevents Russian internet users from utilizing ECH for censorship circumvention. It also blocks otherwise uncensored websites such as SteamDB. I wrote a short summarizing blog post: jonsnowwhite.github.io/page/…
1
2
7
996
Niklas Niere/JonSnowWhite retweeted
23 Apr 2024
The latest version of Intra has more robust protection against SNI attacks, unblocking more sites in more places, without the need for a VPN!
It's working very well in Iran for Youtube, Reddit and other sites.
Check out getintra.org and help spread the word!
2
4
20
2,042
12 Apr 2024
Sci-Hub is now officially blocked in Germany.
Following a decision from Jan 8th, 2024, ISPs now redirect to a shared blockpage: notice.cuii.info/
I share some insights in this thread:
1
1
4
280
12 Apr 2024
How can the block be circumvented?
1. Use an alternate domain, not all Sci-Hub domains are affected by the blocks
2. Use an alternative DNS server. A quick fix in Firefox is to enable "Increased protection" for DNS over HTTPS; for Chrome enable "Use secure DNS"
1
1
215
12 Apr 2024
Closing remarks:
1. (Voluntary) Internet Censorship is prevalent in Germany
2. It is also easily circumventable
3. Copyright holders of scientific work put in effort to uphold that copyright
1
103
Niklas Niere/JonSnowWhite retweeted
1 Sep 2023
It is really ridiculous that disclosing crypto vulnerabilities is so hard nowadays. We can practically decrypt @fastly TLS sessions, and they ignore/misunderstand our disclosure for 2 months. Is that really so hard to understand TLS if you are a large CDN???
6
16
70
14,801
Niklas Niere/JonSnowWhite retweeted
4 Jul 2023
Anybody from my followers working for Fastly (or knows anyone) who can help us with some TLS analyses? Thank you!
1
5
3
2,776