CakeResume 找人才
進階搜尋
On
沒有符合的項目。
4 到 6 年
6 到 10 年
10 到 15 年
15 年以上
資深襄理/Software Developer @遠東國際商業銀行2022 ~ 現在
・
Software Engineer / Backend Engineer
一個月內
確保程式品質。 * Jenkins實施自動化建置和測試流程,縮短20%的產品驗證時間。 - 開發Mock Page: * 設計並實現用於演示和測試的Mock Page,加快前端開發流程和用戶體驗設計。 - 推動CI/CD與Docker實踐: * 實施CI/CD流程,將代碼部署時間縮短30%,並提高了部署的一致性和
就職中
・
正在積極求職中
全職 / 對遠端工作有興趣
6 到 10 年
龍華科技大學
・
電子工程最輕量、快速的招募方案,數百家企業的選擇
搜尋履歷,主動聯繫求職者,提升招募效率。
- 瀏覽所有搜尋結果
- 每日可無限次數開啟陌生對話
- 搜尋僅開放付費企業檢視的履歷
- 檢視使用者信箱 & 電話
搜尋技巧
1
嘗試搜尋最精準的關鍵字組合
資深 後端 php laravel
2
將須完全符合的字詞放在雙引號中
"社群行銷"
3
在不想搜尋到的字詞前面加上減號,如果想濾掉中文字,需搭配雙引號使用 (-"人資")
UI designer -UX
職場能力評價定義
專業技能
該領域中具備哪些專業能力(例如熟悉 SEO 操作,且會使用相關工具)。
問題解決能力
能洞察、分析問題,並擬定方案有效解決問題。
變通能力
遇到突發事件能冷靜應對,並隨時調整專案、客戶、技術的相對優先序。
溝通能力
有效傳達個人想法,且願意傾聽他人意見並給予反饋。
時間管理能力
了解工作項目的優先順序,有效運用時間,準時完成工作內容。
團隊合作能力
具有向心力與團隊責任感,願意傾聽他人意見並主動溝通協調。
領導力
專注於團隊發展,有效引領團隊採取行動,達成共同目標。
超過一年
Co-founder & Full-stack Engineer @ CityChaser Studio
CityChaser Studio
・
2019 ~ 現在
專業背景
目前狀態
就學中
求職階段
專業
全端工程師
產業
工作年資
1 到 2 年
管理經歷
我有管理 1~5 人的經驗
技能
語言能力
English
・
進階
求職偏好
希望獲得的職位
Software Engineer
預期工作模式
全職
期望的工作地點
Taipei City, 台灣, New Taipei City, 台灣
遠端工作意願
對遠端工作有興趣
接案服務
是,我利用業餘時間接案
學歷
學校
Carnegie Mellon University
主修科系
Software Engineering
Chun-Hao Huang
Software Engineering • New Taipei City, TW • [email protected]
A highly motivated and passionate engineer graduate from National Cheng Kung University, offering 1+ years of experience in the full software development life-cycle – from concept through delivery of next-generation applications and customizable solutions to real-world challenges.
Technical Skill
Front-end
2 years in front-end development, being able to construct front-end page in modern web framework.
- Frameworks: Vue.js, React.js.
- UI frameworks: Vuetify, ElementUI, MaterialUI.
- Pre-processors: Pug, Sass/Scss.
- Build tools: NPM, Webpack, Gulp, Babel, ESLint.
- SEO: Google Analytics.
- Others: Phaser, Konva, ECharts, D3.js, Mapbox, Google Map.
Back-end
1+ years in back-end development, being able to develop API server with different back-end frameworks.
- Frameworks: Node.js / ExpressJS, GIN, Django.
- Databases: MongoDB, GraphQL, MySQL, AWS DynamoDB, Redis.
- ORM/ODM: Mongoose, Sequelize, TypeORM.
- Clouds: Heroku, AWS, Google Cloud Platform, Firebase.
Others
Learn different software stacks in computer science and improve software development skills.
- Programming languages: Golang, Python, Java, Typescript, C++, Shell Script.
- Version control: Git, GitHub, GitLab, BitBucket.
- Software development: Qt, Electron, JavaFX, Swing.
- DevOps: Docker, Kubernetes, GitHub Actions, GitLab CI/CD.
- Editors: VSCode, Vim.
Work Experience
Co-founder & Full-stack Engineer • Nov. 2019 – Present
CityChaser Studio
A game studio consists of students from National Taiwan University, National Cheng Kung University, National Chengchi University, hoping to promote Taiwan's beauty through our product. You can collect all the famous characteristic buildings in Taiwan by location-based simulation mobile game.
Product – Kyronus
Developed cross-platform mobile simulation game supporting Taiwan culture of historical site.
Key tech: mobile application framework, serverless computing, cloud, software engineering, DevOps.
- Won 3rd prize out of 24 teams in Mobile Game Development Track of Vision Get Wild Award 2020, the largest creative and technological competition and exhibition for undergraduates in southern Taiwan, and received award winners interview by Bahamut Game Community, the most famous Chinese community forum related to animations, comics, and games.
- Crowdfunded $3,500 USD (approx.) from 100+ sponsors in ZecZec.
- Shortlisted in the first stage of U-Start Innovation and Entrepreneurship Program 2020 by Youth Development Administration, Ministry of Education and thus obtained $18,000 USD (approx.) funding (75 out of 500+ applications).
- Shortened app development cycle by proposing and integrating Apache Cordova into project to build an one-codebase hybrid mobile app (Android & iOS).
- Avoided generating excessive load to API server by implementing truncated exponential backoff on front-end API requesting in Axios interceptors.
- Improved frame rate up to 200% in map-related operation (scaling, rotating, relocating, ...etc) by building Cordova native plugin with Mapbox SDK.
- Introduced DevOps pipelines using GitLab CI/CD and Docker for Android automatic deployment in semantic versioning and thus successfully shortened development cycle time by up to 50%.
- Reduced Docker image's size by up to 300% with Multi-Stage Builds tech to accelerate the build and deployment processes.
- Led 7-person team and coordinated all Scrum Ceremonies including Sprint Planning, Daily Stand-ups, Sprint retrospectives, Sprint Demos, Story Grooming, and Release Planning resulting in on-time delivery rate of 95%.
- Built multiple kernel components of game mechanisms: collect resource system, mining system, offline countdown timer, and so on.
- Constructed several back-end APIs for collect resource system, email system using Express.js, DynamoDB, AWS Lambda, and AWS Gateway.
External Links
Web Development Intern • July 2019 – Aug. 2019
IT Department, FarEasTone Telecom
A leading telecommunications company in Taiwan, striving to close the gap between people to achieve the objective of “Closing the distance”. As the 5G era approaches, FET aims in Big Data, AI, IoT, and other digital applications, to not only bring people closer together in mind, also to reduce the gap between people and new technology.
Project – KPI Dashboard
Constructed web-based dashboard to produce detailed monthly KPI reports automatically.
Key tech: web UI library, database, object-relational mapping, PSD to HTML, secure transport protocol.
- Used jQuery to built mobile UI adopting Responsive Web Design to work smoothly on both mobile and desktop devices.
- Built real-time dashboard chart with Apache ECharts and implemented periodically API requesting using JavaScript closure.
- Enabled HR to import KPI data from Microsoft Excel spreadsheets into Django model.
- Automatically generated monthly KPI reports using shell script and Linux crontab and thus decreased HR daily workload by 13%.
- Directed 3-person team and completed the project 2 weeks in advance with an additional 13-page documentation slashing job handover.
- Proposed AAA (Authentication, Authorization, and Accounting) secure transport protocol using Kerberos and Microsoft Active Directory.
Project – Fraud Call Detection
Trained ML model for fraud call detection.
Key tech: classifier, feature engineering, data pre-processing.
- Utilized Recursive Feature Elimination (RFE) and bagged decision trees to trim number of features from 52 to 20 and successfully reduced training time by up to 20%.
- Applied weighted average ensemble (LightGBM, GradientBoosting, XGBoost, CatBoost, and RandomForest) to final prediction and thus improved precision rate by up to 10%.
- Built a multi-classifier with 94% precision to detect fraud call with FarEasTone Telecom's anonymous data.
Education
National Cheng Kung University • Sept. 2016 – June 2020
B.S. in Computer Science and Information Engineering
- Avg. GPA: 3.98/4.30, Last 60 GPA: 4.11/4.30. (Transcript)
- Selected coursework: Programming Languages (A+), Advanced Software Engineering (A+) *, Algorithms (A+), Network Management (A+) *, Advanced Competitive Programming (A) *, Data Structure (A), Compiler Construction (A), etc. (* denotes graduate-level courses.)
- Teaching assistant in Program Design (II) course 2018, Program Design (II) course 2019.
Selected Project
ATG.io
Independent Study
Trained a bot agent using Deep Q-network (DQN), fitting it into a reinforcement learning paradigm and real-time training with users' logic in C++ code.
Developed web-based platform for users to upload code and display simulation in real-time.
Used Libraries/Tools: Vue, Vue Router, Vuex, Pug, Sass/Scss, Axios, Element-UI, Webpack, GIN, LevelDB, Redis, Konva, pako, Docker, Kubernetes.
Online Judge and Game Integrated System
Teaching Assistant Side Project
Built online judge system and content manage system for coding problem management to evaluate 200+ students’ performance in Program Design (I) course 2020.
Used Libraries/Tools: Vue, Vue Router, Vuex, Pug, Sass/Scss, Axios, Vuetify, Express.js, Redis, MongoDB, web socket, nodemon, Firejail.
Won College Student Research Scholarship $1,800 USD (approx.) from National Science Council.
Shortlisted in Digital Innovative Learning and Information Software Application Track of Taiwan Academic
Network Conference 2020.
Spec Organizer
2019 Mei-Chu Hackathon
Developed web-based specification documentation organizer involving computer vision and optical character recognition to retrieve and organize information from documents.
Used Libraries/Tools: Vue, Vuex, Vue Router, Pug, Sass/Scss, Axios, Vuetify, Django, ngrok.
Went through next round from FootPrintKu group, and won 2nd prize out of 34 teams in finalist.
HackMDir
Final Project of Programming Languages course
HackMDir is a Google Chrome Extension that helps HackMD users manage their notes in a better way. It provides directory categorization and bulk operation (copy, group, export to bookmode, delete) for regular users.
Used Libraries/Tools: chrome extension API, React, Redux, Webpack, Babel, Material-UI.
Received internship offer from HackMD’s CTO.
μC Compiler
Final Project of Compiler Construction course
Constructed μC compiler for java assembly code generation using lexical definition, syntactic and semantic definitions, LALR(1) parser.
Used Libraries/Tools: yacc, lex, jasmin.
Ranked within top 10% out of 135 projects.
Remote iPhone Exploitation with iMessage
Final Project of Information Security Systems course
Designed an iMessage that force opens calculator of receiver iPhone using CVE-2019-8641, ASLR Bypasser, observ- able crash oracle, heap spray.
Used Libraries/Tools: frida, nsarchiver.
Graded top 1 out of 50 projects.
GitHub Reviewer Recommendation using Graph
Final Project of Information Security Systems course
Built a recommendation system for GitHub pull-request's reviewer by Expertise-Authority Recommendation (EARec) Network and latent semantic analysis.
Used Libraries/Tools: scikit-learn, BERT, PyTorch.
Load Balancing in Round Robin
Final Project of Network Management course
Implemented Application Load Balancer and Network Load Balancer using Round Robin algorithm in a given topology by
- Mininet and Ryu controller
- P4 on BMv2 switch and ONOS as controller
Used Libraries/Tools: Ryu, mininet, ONOS.
Other Experience
Trainee • 2021 TeamT5 Winter Security Camp
Tea a professional Taiwan-based cyber security solution provider which has the deepest and best understanding of cyber attackers in Asia Pacific.
- Analyzed Kimsuky (carrying out ongoing cyber-espionage campaign against South Korean think-tanks) malicious DLL file and thus earned the qualification of 5-day cybersecurity camp.
- Joined 5-day intensive cybersecurity camp covering topics in Malware Analysis, Incident Response, Windows Reverse Engineering, and Vulnerability Research.
- Learned Windows PE Inspection using pestudio, CFF Explorer, Detect it easy for static malware analysis.
- Analyzed spearing phishing email, fake documents through parsing OLE and OpenXML files to disclose encoded and threaten files or malicious code.
- Applied associative search by grep command on suspicious log events and inferred whole attack chain.
- Practiced attacking insecure firmware based on OpenWrt in several aspects, such as tracing filesystem through binwalk, brute-forcing password using wordlists based on Mirai botnet, XSS attacking, and so on.
- Final project: CVE 2019-5736 Container Security for Docker.
External Links
Trainee • 2020 Qiskit Global Summer School
Qiskit Global Summer School is a two-week intensive summer school designed to empower the next generation of quantum developers with the knowledge to explore quantum applications on their own. The curriculum covers quantum preliminaries before focusing on two key areas: superconducting devices and quantum chemistry applications.
- Attended 3 weeks of lectures and programming labs on quantum physics, quantum algorithms, and quantum technology, including a final project.
- Learned basics of quantum computing and fundamental quantum computing algorithms such as Grover's search algorithm and Shor's factorization algorithm.
- Built and run simple quantum circuits on cloud quantum computers using IBM’s open-source quantum computing library Qiskit.
- Certified as Quantum Computing developer by accomplishing 8 assignments related to quantum computing algorithms, quantum error correction, and superconducting Qubits, etc.
- Final project: Estimating ground state energy of LiH molecule using VQE.
External Links
Trainee • 2020 Advanced Information Security Summer School
AIS3 is an one-week intensive security training course hosted by NTU, NTUST, NYCU, and other universities to polish students' cybersecurity cababilities through practical operations.
- Ranked within the top 10% out of 612 participators in capture-the-flag and thus earned the qualification of 5-day training courses.
- Received 5-day training courses in ICS attack cases, Threat Hunting, fake news detection, SecDevOps, and red team exercise, etc.
- Exercised revealing hidden and often unintended relationships within Active Directory environment using BloodHoundAD.
- Executed permission escalation through PrintSpoofer and dumped security account manager (SAM) file to obtain LM and NTLM Hash by samdump2 and Creddump7
- Executed password spraying through smb protocol by crackmapexec and thus successfully retrieved specific intranet host's password.
- Final project: GPS spoofing and fake alert with arbitrary content in public warning level using USRP b210.
External Links
Question Commitee • Information Technology Software Academy (ITSA)
ITSA is a program assisting in cultivation of intelligent and innovative cross-domain digital talents, mainly focusing on four domains: intelligent perception and interactive experience, cultural creativity and multimedia, big data and data science, E-commerce and fintech.
Mainly setting questions concerned with web development:
- HTTP Parser: to build simple GUI and parse HTTP response.
- Streaming Video with Web Worker: to build a grayscale standardization filter with web worker and apply on video streaming.
- Rate Limiter: to implement rate limiter in Token Bucket strategy and prevent DoS attacking.
- Promise Queue: to implement a promise queue in ECAMScript 6 Class and control execution order of promises.
- Reverse proxy in Node.js: to build simple reverse proxy as logger and record traffic flow in given format.
- Node.js Server with Load Balancing in Source IP Hash Policy: to implement simple Node.js server with load balancing using source IP Hash policy.
See more in HackMD note
MOOCs
- Google IT Support Certificate Program, Google, Coursera
- Model Thinking, University of Michigan, Coursera
- Machine Learning, Stanford University, Coursera
- Programming Language, University of Washington, Coursera
- Build a Modern Computer from First Principles: Nand to Tetris, The Hebrew University of Jerusale, Coursera
- Software Defined Networking, University of Chicago, Coursera
- Cloud Computing, University of Illinois Urbana-Champaign, Coursera
Chun-Hao Huang
Software Engineering • New Taipei City, TW • [email protected]
A highly motivated and passionate engineer graduate from National Cheng Kung University, offering 1+ years of experience in the full software development life-cycle – from concept through delivery of next-generation applications and customizable solutions to real-world challenges.
Technical Skill
Front-end
2 years in front-end development, being able to construct front-end page in modern web framework.
- Frameworks: Vue.js, React.js.
- UI frameworks: Vuetify, ElementUI, MaterialUI.
- Pre-processors: Pug, Sass/Scss.
- Build tools: NPM, Webpack, Gulp, Babel, ESLint.
- SEO: Google Analytics.
- Others: Phaser, Konva, ECharts, D3.js, Mapbox, Google Map.
Back-end
1+ years in back-end development, being able to develop API server with different back-end frameworks.
- Frameworks: Node.js / ExpressJS, GIN, Django.
- Databases: MongoDB, GraphQL, MySQL, AWS DynamoDB, Redis.
- ORM/ODM: Mongoose, Sequelize, TypeORM.
- Clouds: Heroku, AWS, Google Cloud Platform, Firebase.
Others
Learn different software stacks in computer science and improve software development skills.
- Programming languages: Golang, Python, Java, Typescript, C++, Shell Script.
- Version control: Git, GitHub, GitLab, BitBucket.
- Software development: Qt, Electron, JavaFX, Swing.
- DevOps: Docker, Kubernetes, GitHub Actions, GitLab CI/CD.
- Editors: VSCode, Vim.
Work Experience
Co-founder & Full-stack Engineer • Nov. 2019 – Present
CityChaser Studio
A game studio consists of students from National Taiwan University, National Cheng Kung University, National Chengchi University, hoping to promote Taiwan's beauty through our product. You can collect all the famous characteristic buildings in Taiwan by location-based simulation mobile game.
Product – Kyronus
Developed cross-platform mobile simulation game supporting Taiwan culture of historical site.
Key tech: mobile application framework, serverless computing, cloud, software engineering, DevOps.
- Won 3rd prize out of 24 teams in Mobile Game Development Track of Vision Get Wild Award 2020, the largest creative and technological competition and exhibition for undergraduates in southern Taiwan, and received award winners interview by Bahamut Game Community, the most famous Chinese community forum related to animations, comics, and games.
- Crowdfunded $3,500 USD (approx.) from 100+ sponsors in ZecZec.
- Shortlisted in the first stage of U-Start Innovation and Entrepreneurship Program 2020 by Youth Development Administration, Ministry of Education and thus obtained $18,000 USD (approx.) funding (75 out of 500+ applications).
- Shortened app development cycle by proposing and integrating Apache Cordova into project to build an one-codebase hybrid mobile app (Android & iOS).
- Avoided generating excessive load to API server by implementing truncated exponential backoff on front-end API requesting in Axios interceptors.
- Improved frame rate up to 200% in map-related operation (scaling, rotating, relocating, ...etc) by building Cordova native plugin with Mapbox SDK.
- Introduced DevOps pipelines using GitLab CI/CD and Docker for Android automatic deployment in semantic versioning and thus successfully shortened development cycle time by up to 50%.
- Reduced Docker image's size by up to 300% with Multi-Stage Builds tech to accelerate the build and deployment processes.
- Led 7-person team and coordinated all Scrum Ceremonies including Sprint Planning, Daily Stand-ups, Sprint retrospectives, Sprint Demos, Story Grooming, and Release Planning resulting in on-time delivery rate of 95%.
- Built multiple kernel components of game mechanisms: collect resource system, mining system, offline countdown timer, and so on.
- Constructed several back-end APIs for collect resource system, email system using Express.js, DynamoDB, AWS Lambda, and AWS Gateway.
External Links
Web Development Intern • July 2019 – Aug. 2019
IT Department, FarEasTone Telecom
A leading telecommunications company in Taiwan, striving to close the gap between people to achieve the objective of “Closing the distance”. As the 5G era approaches, FET aims in Big Data, AI, IoT, and other digital applications, to not only bring people closer together in mind, also to reduce the gap between people and new technology.
Project – KPI Dashboard
Constructed web-based dashboard to produce detailed monthly KPI reports automatically.
Key tech: web UI library, database, object-relational mapping, PSD to HTML, secure transport protocol.
- Used jQuery to built mobile UI adopting Responsive Web Design to work smoothly on both mobile and desktop devices.
- Built real-time dashboard chart with Apache ECharts and implemented periodically API requesting using JavaScript closure.
- Enabled HR to import KPI data from Microsoft Excel spreadsheets into Django model.
- Automatically generated monthly KPI reports using shell script and Linux crontab and thus decreased HR daily workload by 13%.
- Directed 3-person team and completed the project 2 weeks in advance with an additional 13-page documentation slashing job handover.
- Proposed AAA (Authentication, Authorization, and Accounting) secure transport protocol using Kerberos and Microsoft Active Directory.
Project – Fraud Call Detection
Trained ML model for fraud call detection.
Key tech: classifier, feature engineering, data pre-processing.
- Utilized Recursive Feature Elimination (RFE) and bagged decision trees to trim number of features from 52 to 20 and successfully reduced training time by up to 20%.
- Applied weighted average ensemble (LightGBM, GradientBoosting, XGBoost, CatBoost, and RandomForest) to final prediction and thus improved precision rate by up to 10%.
- Built a multi-classifier with 94% precision to detect fraud call with FarEasTone Telecom's anonymous data.
Education
National Cheng Kung University • Sept. 2016 – June 2020
B.S. in Computer Science and Information Engineering
- Avg. GPA: 3.98/4.30, Last 60 GPA: 4.11/4.30. (Transcript)
- Selected coursework: Programming Languages (A+), Advanced Software Engineering (A+) *, Algorithms (A+), Network Management (A+) *, Advanced Competitive Programming (A) *, Data Structure (A), Compiler Construction (A), etc. (* denotes graduate-level courses.)
- Teaching assistant in Program Design (II) course 2018, Program Design (II) course 2019.
Selected Project
ATG.io
Independent Study
Trained a bot agent using Deep Q-network (DQN), fitting it into a reinforcement learning paradigm and real-time training with users' logic in C++ code.
Developed web-based platform for users to upload code and display simulation in real-time.
Used Libraries/Tools: Vue, Vue Router, Vuex, Pug, Sass/Scss, Axios, Element-UI, Webpack, GIN, LevelDB, Redis, Konva, pako, Docker, Kubernetes.
Online Judge and Game Integrated System
Teaching Assistant Side Project
Built online judge system and content manage system for coding problem management to evaluate 200+ students’ performance in Program Design (I) course 2020.
Used Libraries/Tools: Vue, Vue Router, Vuex, Pug, Sass/Scss, Axios, Vuetify, Express.js, Redis, MongoDB, web socket, nodemon, Firejail.
Won College Student Research Scholarship $1,800 USD (approx.) from National Science Council.
Shortlisted in Digital Innovative Learning and Information Software Application Track of Taiwan Academic
Network Conference 2020.
Spec Organizer
2019 Mei-Chu Hackathon
Developed web-based specification documentation organizer involving computer vision and optical character recognition to retrieve and organize information from documents.
Used Libraries/Tools: Vue, Vuex, Vue Router, Pug, Sass/Scss, Axios, Vuetify, Django, ngrok.
Went through next round from FootPrintKu group, and won 2nd prize out of 34 teams in finalist.
HackMDir
Final Project of Programming Languages course
HackMDir is a Google Chrome Extension that helps HackMD users manage their notes in a better way. It provides directory categorization and bulk operation (copy, group, export to bookmode, delete) for regular users.
Used Libraries/Tools: chrome extension API, React, Redux, Webpack, Babel, Material-UI.
Received internship offer from HackMD’s CTO.
μC Compiler
Final Project of Compiler Construction course
Constructed μC compiler for java assembly code generation using lexical definition, syntactic and semantic definitions, LALR(1) parser.
Used Libraries/Tools: yacc, lex, jasmin.
Ranked within top 10% out of 135 projects.
Remote iPhone Exploitation with iMessage
Final Project of Information Security Systems course
Designed an iMessage that force opens calculator of receiver iPhone using CVE-2019-8641, ASLR Bypasser, observ- able crash oracle, heap spray.
Used Libraries/Tools: frida, nsarchiver.
Graded top 1 out of 50 projects.
GitHub Reviewer Recommendation using Graph
Final Project of Information Security Systems course
Built a recommendation system for GitHub pull-request's reviewer by Expertise-Authority Recommendation (EARec) Network and latent semantic analysis.
Used Libraries/Tools: scikit-learn, BERT, PyTorch.
Load Balancing in Round Robin
Final Project of Network Management course
Implemented Application Load Balancer and Network Load Balancer using Round Robin algorithm in a given topology by
- Mininet and Ryu controller
- P4 on BMv2 switch and ONOS as controller
Used Libraries/Tools: Ryu, mininet, ONOS.
Other Experience
Trainee • 2021 TeamT5 Winter Security Camp
Tea a professional Taiwan-based cyber security solution provider which has the deepest and best understanding of cyber attackers in Asia Pacific.
- Analyzed Kimsuky (carrying out ongoing cyber-espionage campaign against South Korean think-tanks) malicious DLL file and thus earned the qualification of 5-day cybersecurity camp.
- Joined 5-day intensive cybersecurity camp covering topics in Malware Analysis, Incident Response, Windows Reverse Engineering, and Vulnerability Research.
- Learned Windows PE Inspection using pestudio, CFF Explorer, Detect it easy for static malware analysis.
- Analyzed spearing phishing email, fake documents through parsing OLE and OpenXML files to disclose encoded and threaten files or malicious code.
- Applied associative search by grep command on suspicious log events and inferred whole attack chain.
- Practiced attacking insecure firmware based on OpenWrt in several aspects, such as tracing filesystem through binwalk, brute-forcing password using wordlists based on Mirai botnet, XSS attacking, and so on.
- Final project: CVE 2019-5736 Container Security for Docker.
External Links
Trainee • 2020 Qiskit Global Summer School
Qiskit Global Summer School is a two-week intensive summer school designed to empower the next generation of quantum developers with the knowledge to explore quantum applications on their own. The curriculum covers quantum preliminaries before focusing on two key areas: superconducting devices and quantum chemistry applications.
- Attended 3 weeks of lectures and programming labs on quantum physics, quantum algorithms, and quantum technology, including a final project.
- Learned basics of quantum computing and fundamental quantum computing algorithms such as Grover's search algorithm and Shor's factorization algorithm.
- Built and run simple quantum circuits on cloud quantum computers using IBM’s open-source quantum computing library Qiskit.
- Certified as Quantum Computing developer by accomplishing 8 assignments related to quantum computing algorithms, quantum error correction, and superconducting Qubits, etc.
- Final project: Estimating ground state energy of LiH molecule using VQE.
External Links
Trainee • 2020 Advanced Information Security Summer School
AIS3 is an one-week intensive security training course hosted by NTU, NTUST, NYCU, and other universities to polish students' cybersecurity cababilities through practical operations.
- Ranked within the top 10% out of 612 participators in capture-the-flag and thus earned the qualification of 5-day training courses.
- Received 5-day training courses in ICS attack cases, Threat Hunting, fake news detection, SecDevOps, and red team exercise, etc.
- Exercised revealing hidden and often unintended relationships within Active Directory environment using BloodHoundAD.
- Executed permission escalation through PrintSpoofer and dumped security account manager (SAM) file to obtain LM and NTLM Hash by samdump2 and Creddump7
- Executed password spraying through smb protocol by crackmapexec and thus successfully retrieved specific intranet host's password.
- Final project: GPS spoofing and fake alert with arbitrary content in public warning level using USRP b210.
External Links
Question Commitee • Information Technology Software Academy (ITSA)
ITSA is a program assisting in cultivation of intelligent and innovative cross-domain digital talents, mainly focusing on four domains: intelligent perception and interactive experience, cultural creativity and multimedia, big data and data science, E-commerce and fintech.
Mainly setting questions concerned with web development:
- HTTP Parser: to build simple GUI and parse HTTP response.
- Streaming Video with Web Worker: to build a grayscale standardization filter with web worker and apply on video streaming.
- Rate Limiter: to implement rate limiter in Token Bucket strategy and prevent DoS attacking.
- Promise Queue: to implement a promise queue in ECAMScript 6 Class and control execution order of promises.
- Reverse proxy in Node.js: to build simple reverse proxy as logger and record traffic flow in given format.
- Node.js Server with Load Balancing in Source IP Hash Policy: to implement simple Node.js server with load balancing using source IP Hash policy.
See more in HackMD note
MOOCs
- Google IT Support Certificate Program, Google, Coursera
- Model Thinking, University of Michigan, Coursera
- Machine Learning, Stanford University, Coursera
- Programming Language, University of Washington, Coursera
- Build a Modern Computer from First Principles: Nand to Tetris, The Hebrew University of Jerusale, Coursera
- Software Defined Networking, University of Chicago, Coursera
- Cloud Computing, University of Illinois Urbana-Champaign, Coursera