[ CONNECTED ] · authenticating root@uit:~ ...

Trang Tuấn Anh

> infosec student · web exploitation · CTF player · red team intern candidate

~/identity.sh — bash

$

$

$

11thB01lers CTF 2026
8.92UIT GPA / 10
Top 15%TryHackMe Global
46THM Rooms Solved
20+PortSwigger Labs
./open_writeups.sh ./summon.sh

about // 01

cat ~/about.md

Sinh viên năm 2 ngành An toàn thông tin (Cử nhân Tài năng) tại UIT-VNU HCM. Đang tập trung vào web app security, network pentesting và nghiên cứu DNS cache poisoning.

Ban ngày làm intrusion-detection, ban đêm bẻ khoá web app trong CTF. Mục tiêu gần — Red Team Internship.

Recent highlight: Top 11 thế giới tại B01lers CTF 2026 (Open division) cùng team UIT-creampie.

achievements // 02

ls -la ~/trophies/ | sort -t' ' -k2 -r

FEATURED 🏆

B01lers CTF 2026 — Top 11

Purdue B01lers · Open Division

Team UIT-creampie · 7825 pts · 11/all teams · Strong: web & rev

APR 2026

open writeup
🔐

TryHackMe — Jr Penetration Tester

TryHackMe Academy

Top 15% globally · 46 rooms conquered · 7 badges earned

2025 — 2026

view certificate
🕷

Web Security Labs (20+)

PortSwigger Academy

SQLi · XSS · IDOR · auth flaws · OWASP Top 10

2025 — present

⚔️

Hack The Box — Starting Point

Hack The Box

Linux & Windows exploitation · priv-esc · SQLi · IDOR

2026

🏁

PicoCTF

Carnegie Mellon University

Web exploitation · cryptography · reverse engineering

2026 — present

projects // 03

find . -type d -name '*.proj' -exec ls -la {} +

TLS Anomaly Detection IDS

2 devs · 2025

  • Realtime flow-based IDS/IPS pipeline using NFStream + FastAPI + MySQL + Docker
  • Designed backend ingestion & event-query workflows for anomaly monitoring
  • Integrated ML detection module developed by teammate
pythonfastapi mysqldocker nfstreamml

github.com/TrangTuanAnh/tls-anomaly-detection-ids

Secure LAN File Transfer & Storage

3 devs · 2026 — present

  • Chunk-based transfer with resume · role-based room access · metadata coordination
  • Security: local virus scan, integrity check, encrypted transfer, audit log
  • Designed overall architecture: coordinator + storage + client components
pythonlinux encryptionarchitecture network

// in progress — repo private

DNS Cache Poisoning Research (POPS)

2 devs · 2026 — present

  • Literature review on DNS cache poisoning variants (USENIX Security '25)
  • Building controlled lab with Unbound/BIND for fragmentation-based attack reproduction
  • Defining test scenarios for exploitability and defense validation
dnsunboundbind network-secresearch

reference paper

writeups & journal // 04

tail -f ~/log/recent.log

contact // 05

curl -X POST /summon

Đang tìm cơ hội Red Team Internship hoặc cộng tác nghiên cứu bảo mật. Ping qua kênh nào cũng được — em sẽ trả lời trong 24h.

email · uit 24520131@gm.uit.edu.vn
email · personal trangtuananh11102006mc@gmail.com
github github.com/TrangTuanAnh
linkedin in/anh-trang-tuấn