Chun-Hao Huang

Software Engineering  •  New Taipei City, TW  •  [email protected]

A highly motivated and passionate engineer graduate from National Cheng Kung University, offering 1+ years of experience in the full software development life-cycle – from concept through delivery of next-generation applications and customizable solutions to real-world challenges.

Technical Skill


2 years in front-end development, being able to construct front-end page in modern web framework.

  • Frameworks: Vue.js, React.js.
  • UI frameworks: Vuetify, ElementUI, MaterialUI.
  • Pre-processors: Pug, Sass/Scss.
  • Build tools: NPM, Webpack, Gulp, Babel, ESLint.
  • SEO: Google Analytics.
  • Others: Phaser, Konva, ECharts, D3.js, Mapbox, Google Map.


1+ years in back-end development, being able to develop API server with different back-end frameworks.

  • Frameworks: Node.js / ExpressJS, GIN, Django.
  • Databases: MongoDB, GraphQL, MySQL, AWS DynamoDB, Redis.
  • ORM/ODM: Mongoose, Sequelize, TypeORM.
  • Clouds: Heroku, AWS, Google Cloud Platform, Firebase.


Learn different software stacks in computer science and improve software development skills.

  • Programming languages: Golang, Python, Java, Typescript, C++, Shell Script.
  • Version control: Git, GitHub, GitLab, BitBucket.
  • Software development: Qt, Electron, JavaFX, Swing.
  • DevOps: Docker, Kubernetes, GitHub Actions, GitLab CI/CD.
  • Editors: VSCode, Vim.

Work Experience

Co-founder & Full-stack Engineer  •  Nov. 2019 – Present
CityChaser Studio

A game studio consists of students from National Taiwan University, National Cheng Kung University, National Chengchi University, hoping to promote Taiwan's beauty through our product. You can collect all the famous characteristic buildings in Taiwan by location-based simulation mobile game.

Product – Kyronus
Developed cross-platform mobile simulation game supporting Taiwan culture of historical site. 
Key tech: mobile application framework, serverless computing, cloud, software engineering, DevOps.
  • Won 3rd prize out of 24 teams in Mobile Game Development Track of Vision Get Wild Award 2020, the largest creative and technological competition and exhibition for undergraduates in southern Taiwan, and received award winners interview by Bahamut Game Community, the most famous Chinese community forum related to animations, comics, and games. 
  • Crowdfunded $3,500 USD (approx.) from 100+ sponsors in ZecZec.
  • Shortlisted in the first stage of U-Start Innovation and Entrepreneurship Program 2020 by Youth Development Administration, Ministry of Education and thus obtained $18,000 USD (approx.) funding (75 out of 500+ applications).
  • Shortened app development cycle by proposing and integrating Apache Cordova into project to build an one-codebase hybrid mobile app (Android & iOS).
  • Avoided generating excessive load to API server by implementing truncated exponential backoff on front-end API requesting in Axios interceptors.
  • Improved frame rate up to 200% in map-related operation (scaling, rotating, relocating, ...etc) by building Cordova native plugin with Mapbox SDK.
  • Introduced DevOps pipelines using GitLab CI/CD and Docker for Android automatic deployment in semantic versioning and thus successfully shortened development cycle time by up to 50%.
  • Reduced Docker image's size by up to 300% with Multi-Stage Builds tech to accelerate the build and deployment processes.
  • Led 7-person team and coordinated all Scrum Ceremonies including Sprint Planning, Daily Stand-ups, Sprint retrospectives, Sprint Demos, Story Grooming, and Release Planning resulting in on-time delivery rate of 95%.
  • Built multiple kernel components of game mechanisms: collect resource system, mining system, offline countdown timer, and so on. 
  • Constructed several back-end APIs for collect resource system, email system using Express.js, DynamoDB, AWS Lambda, and AWS Gateway.

External Links

Web Development Intern  •  July 2019 – Aug. 2019
IT Department, FarEasTone Telecom

A leading telecommunications company in Taiwan, striving to close the gap between people to achieve the objective of “Closing the distance”. As the 5G era approaches, FET aims in Big Data, AI, IoT, and other digital applications, to not only bring people closer together in mind, also to reduce the gap between people and new technology.

Project – KPI Dashboard
Constructed web-based dashboard to produce detailed monthly KPI reports automatically.

Key tech: web UI library, database, object-relational mapping, PSD to HTML, secure transport protocol. 

  • Used jQuery to built mobile UI adopting Responsive Web Design to work smoothly on both mobile and desktop devices.
  • Built real-time dashboard chart with Apache ECharts and implemented periodically API requesting using JavaScript closure.
  • Enabled HR to import KPI data from Microsoft Excel spreadsheets into Django model.
  • Automatically generated monthly KPI reports using shell script and Linux crontab and thus decreased HR daily workload by 13%.
  • Directed 3-person team and completed the project 2 weeks in advance with an additional 13-page documentation slashing job handover.
  • Proposed AAA (Authentication, Authorization, and Accounting) secure transport protocol using Kerberos and Microsoft Active Directory.

Project – Fraud Call Detection
Trained ML model for fraud call detection.

Key tech: classifier, feature engineering, data pre-processing. 

  • Utilized Recursive Feature Elimination (RFE) and bagged decision trees to trim number of features from 52 to 20 and successfully reduced training time by up to 20%.
  • Applied weighted average ensemble (LightGBM, GradientBoosting, XGBoost, CatBoost, and RandomForest) to final prediction and thus improved precision rate by up to 10%.
  • Built a multi-classifier with 94% precision to detect fraud call with FarEasTone Telecom's anonymous data.


National Cheng Kung University  •  Sept. 2016  June 2020
B.S. in Computer Science and Information Engineering 
  • Avg. GPA: 3.98/4.30, Last 60 GPA: 4.11/4.30. (Transcript)
  • Selected coursework: Programming Languages (A+), Advanced Software Engineering (A+) *, Algorithms (A+), Network Management (A+) *, Advanced Competitive Programming (A) *, Data Structure (A), Compiler Construction (A), etc. (* denotes graduate-level courses.)
  • Teaching assistant in Program Design (II) course 2018, Program Design (II) course 2019.

Selected Project


Independent Study

Trained a bot agent using Deep Q-network (DQN), fitting it into a reinforcement learning paradigm and real-time training with users' logic in C++ code.

Developed web-based platform for users to upload code and display simulation in real-time.

Used Libraries/Tools: Vue, Vue Router, Vuex, Pug, Sass/Scss, Axios, Element-UI, Webpack, GIN, LevelDB, Redis, Konva, pako, Docker, Kubernetes.
Paragraph image 02 00@2x

Online Judge and Game Integrated System

Teaching Assistant Side Project

Built online judge system and content manage system for coding problem management to evaluate 200+ students’ performance in Program Design (I) course 2020.

Used Libraries/Tools: Vue, Vue Router, Vuex, Pug, Sass/Scss, Axios, Vuetify, Express.js, Redis, MongoDB, web socket, nodemon, Firejail.

Won College Student Research Scholarship $1,800 USD (approx.) from National Science Council.

Shortlisted in Digital Innovative Learning and Information Software Application Track of Taiwan Academic Network Conference 2020.
Paragraph image 02 00@2x

Spec Organizer

2019 Mei-Chu Hackathon

Developed web-based specification documentation organizer involving computer vision and optical character recognition to retrieve and organize information from documents.

Used Libraries/Tools: Vue, Vuex, Vue Router, Pug, Sass/Scss, Axios, Vuetify, Django, ngrok.

Went through next round from  FootPrintKu group, and won 2nd prize out of 34 teams in finalist.
Paragraph image 02 00@2x


Final Project of Programming Languages course

HackMDir is a Google Chrome Extension that helps HackMD users manage their notes in a better way. It provides directory categorization and bulk operation (copy, group, export to bookmode, delete) for regular users.

Used Libraries/Toolschrome extension API, React, Redux, Webpack, Babel, Material-UI.

Received internship offer from HackMD’s CTO.
Paragraph image 02 00@2x

μC Compiler

Final Project of Compiler Construction course

Constructed μC compiler for java assembly code generation using lexical definition, syntactic and semantic definitions, LALR(1) parser.

Used Libraries/Tools: yacc, lex, jasmin.

Ranked within top 10% out of 135 projects.
Paragraph image 02 00@2x

Remote iPhone Exploitation with iMessage

Final Project of Information Security Systems course

Designed an iMessage that force opens calculator of receiver iPhone using CVE-2019-8641, ASLR Bypasser, observ- able crash oracle, heap spray.

Used Libraries/Tools: frida, nsarchiver.

Graded top 1 out of 50 projects.
Paragraph image 02 00@2x

GitHub Reviewer Recommendation using Graph

Final Project of Information Security Systems course

Built a recommendation system for GitHub pull-request's reviewer by Expertise-Authority Recommendation (EARec) Network and latent semantic analysis.

Used Libraries/Tools: scikit-learn, BERT, PyTorch.
Paragraph image 02 00@2x

Load Balancing in Round Robin

Final Project of Network Management course

Implemented Application Load Balancer and Network Load Balancer using Round Robin algorithm in a given topology by
  • Mininet and Ryu controller
  • P4 on BMv2 switch and ONOS as controller  

Used Libraries/Tools: Ryu, mininet, ONOS.
Paragraph image 02 00@2x

Other Experience

Trainee  •  2021 TeamT5 Winter Security Camp

Tea a professional Taiwan-based cyber security solution provider which has the deepest and best understanding of cyber attackers in Asia Pacific.

  • Analyzed Kimsuky (carrying out ongoing cyber-espionage campaign against South Korean think-tanks) malicious DLL file and thus earned the qualification of 5-day cybersecurity camp.
  • Joined 5-day intensive cybersecurity camp covering topics in Malware Analysis, Incident Response, Windows Reverse Engineering, and Vulnerability Research. 
  • Learned Windows PE Inspection using pestudio, CFF Explorer, Detect it easy for static malware analysis.
  • Analyzed spearing phishing email, fake documents through parsing OLE and OpenXML files to disclose encoded and threaten files or malicious code.
  • Applied associative search by grep command on suspicious log events and inferred whole attack chain.
  • Practiced attacking insecure firmware based on OpenWrt in several aspects, such as tracing filesystem through binwalk, brute-forcing password using wordlists based on Mirai botnet, XSS attacking, and so on.
  • Final project: CVE 2019-5736 Container Security for Docker.
External Links

Trainee  •  2020 Qiskit Global Summer School

Qiskit Global Summer School is a two-week intensive summer school designed to empower the next generation of quantum developers with the knowledge to explore quantum applications on their own. The curriculum covers quantum preliminaries before focusing on two key areas: superconducting devices and quantum chemistry applications.

  • Attended 3 weeks of lectures and programming labs on quantum physics, quantum algorithms, and quantum technology, including a final project.
  • Learned basics of quantum computing and fundamental quantum computing algorithms such as Grover's search algorithm and Shor's factorization algorithm.
  • Built and run simple quantum circuits on cloud quantum computers using IBM’s open-source quantum computing library Qiskit.
  • Certified as Quantum Computing developer by accomplishing 8 assignments related to quantum computing algorithms, quantum error correction, and superconducting Qubits, etc.
  • Final project: Estimating ground state energy of LiH molecule using VQE.
External Links

Trainee  •  2020 Advanced Information Security Summer School

AIS3 is an one-week intensive security training course hosted by NTU, NTUST, NYCU, and other universities to polish students' cybersecurity cababilities through practical operations.

  • Ranked within the top 10% out of 612 participators in capture-the-flag and thus earned the qualification of 5-day training courses.
  • Received 5-day training courses in ICS attack cases, Threat Hunting, fake news detection, SecDevOps, and red team exercise, etc.
  • Exercised revealing hidden and often unintended relationships within Active Directory environment using BloodHoundAD.
  • Executed permission escalation through PrintSpoofer and dumped security account manager (SAM) file to obtain LM and NTLM Hash by samdump2 and Creddump7
  • Executed password spraying through smb protocol by crackmapexec and thus successfully retrieved specific intranet host's password.
  • Final project: GPS spoofing and fake alert with arbitrary content in public warning level using USRP b210.
External Links

Question Commitee  •  Information Technology Software Academy (ITSA)

ITSA is a program assisting in cultivation of intelligent and innovative cross-domain digital talents, mainly focusing on four domains: intelligent perception and interactive experience, cultural creativity and multimedia, big data and data science, E-commerce and fintech.

Mainly setting questions concerned with web development: 
  • HTTP Parser: to build simple GUI and parse HTTP response.
  • Streaming Video with Web Worker: to build a grayscale standardization filter with web worker and apply on video streaming.
  • Rate Limiter: to implement rate limiter in Token Bucket strategy and prevent DoS attacking.
  • Promise Queue: to implement a promise queue in ECAMScript 6 Class and control execution order of promises.
  • Reverse proxy in Node.js: to build simple reverse proxy as logger and record traffic flow in given format.
  • Node.js Server with Load Balancing in Source IP Hash Policy: to implement simple Node.js server with load balancing using source IP Hash policy.
See more in HackMD note


  • Google IT Support Certificate Program, Google, Coursera
  • Model Thinking, University of Michigan, Coursera
  • Machine Learning, Stanford University, Coursera
  • Programming Language, University of Washington, Coursera
  • Build a Modern Computer from First Principles: Nand to Tetris, The Hebrew University of Jerusale, Coursera
  • Software Defined Networking, University of Chicago, Coursera
  • Cloud Computing, University of Illinois Urbana-Champaign, Coursera