星阑科技-技术研发中心 长期提供社招/校招/实习机会,期待攻防对抗、安全研究、AI与大数据分析、前后端研发、高性能系统研发领域爱好者加入,欢迎邮件联系。
Me
- CTO, StarCross Technology
- Mail: [email protected]
- Wechat: decode:RFVEVUJPT00=
- 微信公众号: 乐枕迭代日志
Publication
- "企业应用数据流动监测及治理", ISC互联网安全大会, 2023 [slides]
- 《数据传输安全白皮书》, 工信部, 第四届全球工业互联网大会, 2022 [pdf]
- "云原生容器集群攻防体系建设", Kubernetes Community Days Beijing 2021
- "万物互联时代的API安全探索", 星阑科技「萤火」API安全新品发布会 [slides]
- "Attack Cloud Native Kubernetes", HITB SecConf 2021 Amsterdam [slides]
- "CDK: Zero Dependency Container Penetration Toolkit", BlackHat Asia 2021 Arsenal [slides]
- "Win the 0-Day Racing Game Against Botnet on Public Cloud", BlackHat Asia 2020 [slides]
- "从僵尸网络谈公有云威胁检测", DataCon2020赛后分享 [slides]
- "云原生容器攻防技术矩阵(ATT&CK)", 阿里云 [link]
- "云环境自动化入侵溯源实战", KCon 2019 [slides]
- "Hunting zero-days for millions of websites on Alibaba Cloud", XCon 2019
- "Webshell Detection via Attention-Based Opcode Sequence Classification", AIBS@IJCAI-19, Macao CN, 2019 [paper]
- "Enhance Security Awareness with Data Mining", BlueHat Shanghai 2019
- "企业安全数据分析思考与实践", FreeBuf公开课 [slides]
- "从数据视角探索安全威胁", 先知白帽大会2018 [slides]
Hacktivity
- 2nd place solution of botnet hunting, DataCon 2020 [writeup]
- 1st place solution of malicious DNS traffic & DGA analysis, DataCon 2019 [writeup]
- Organizer of XCTF 2019 Final, team r3kapig. [writeup]
- 1st place of XCTF 2018 Final, team r3kapig [writeup]
- 3rd place of 0CTF/TCTF 2018 Quals, team lotus-r3kapig [writeup]
- [CVE-2017-9306] sysPass 2.1.9 XSS filter bypass
- [CVE-2017-9305] Tiki-Wiki CMS 16.2 XSS filter bypass [advisory]
- [CVE-2017-7881] BigTree CMS 4.2.16 CSRF protection bypass [advisory]
- [CVE-2017-7625] FiyoCMS 2.0.7 Unauthenticated webshell upload
- [CVE-2017-5609] Serendipity 2.0.5 SQL Injection
- [CVE-2017-5543] Subrion CMS 4.0.5 PHP object injection via serialized data
- [CVE-2017-5542] Symphony CMS 2.6.9 missing_extension.php XSS
- [CVE-2017-5541] Symphony CMS 2.6.9 directory traversal
- [CVE-2017-5520] GeniXCMS 0.0.8 authenticated remote command execution
- [CVE-2017-5519] GeniXCMS 0.0.8 Posts.class.php SQL injection
- [CVE-2017-5518] GeniXCMS 0.0.8 media-file upload feature SSRF
- [CVE-2017-5517] GeniXCMS 0.0.8 author.control.php SQL injection
- [CVE-2017-5516] GeniXCMS 0.0.8 user forms multiple XSS
- [CVE-2017-5515] GeniXCMS 0.0.8 XSS in user prompt function
- [CVE-2016-9835] Zikula 1.4.3 directory traversal on Windows platform
- [CVE-2016-9752] Serendipity 2.0.4 SSRF protection bypass
- [CVE-2016-7558] Serendipity 2.0.3 local urls SSRF