A Cyber Security professional with experience in Web Application Security, Bug Bounties, Reverse Engineering, Linux Security and XDR research. Currently located in Singapore ๐ธ๐ฌ.
Experience
Lead Cybersecurity Researcher
Acronis, Singapore โ (Aug 2021 - Present)
Web Hosting Security
- Evaluated security products on the market through offensive testing and reverse engineering, and generated feature requirements for product development
- Developed novel technique of Context-Aware File Integrity Monitoring, which when fed the right context, was able to reduce the amount of alerts to O(1)
- Developed a PoC PHP Malware Engine workflow that uses ASTs for static code analysis for obfuscated webshells
- Designed , Prototyped and Built a Threat Hunting query language https://www.acronis.com/en-sg/blog/posts/threat-hunting-for-msps/
- Tinkering with ASTs here and there
Configuration Assessment
- Curated and ranked CIS Windows security configurations to help companies get a sense of their security posture
Threat Modelling
- Performed Threat Modelling for a large internal software by creating dataflow diagrams and applying STRIDE on the interactions
- Worked with stakeholders to validate the representations of the dataflow, threat scenarios and remediation actions
XDR Research
- Performed competitive analysis on various EDR/XDR products to eventually draft product requirements
- Conceptualized the dataflow diagram of the XDR from data ingestion, ETL, to outputs to the users
- Researched on correlation use cases between detection logs to form an overview of the attack scenarios
ย
Senior Threat Analyst
Ensign, Singapore โ (Jun 2019 - Aug 2021)
Threat Detection
- Researched and developed detection techniques for various network
attacks such as: C&C Beaconing, XSS, DGA, DNS Tunneling/Exfiltration
- Developed a novel technique for detection of Homoglyphic Phishing attempts
- Analyzed DNS and Netflow data using both traffic temporal analysis and URL pattern analysis to detect anomalous behaviors
Systems Engineering
- Developed an end-to-end Python system from ground up to ingest network telemetry data, including Netflow and DNS
- Re-Architectured the Python processing system using PySpark to transform it into a Big Data system
Skills
Web Application Security
HackTheBox, CTFs and Bug Bounties are activities I actively engage in, with a huge focus on Web Application Security.
Iโm part of the top CTF team in Singapore, Social Engineering Experts, where I focus on web and sometimes reverse engineering problems.
Iโm found multiple bugs on Hackerone with bounties paid out by detecting flaws such as SSRF, Blind SQL Injection, Account Take Overs and Business Logic Flaws.
I semi-compete recreationally on HackTheBox, with my highest ranking of 7th locally (itโs since dropped quite a bit due to the tough competition)
ย
Certifications
OffSec Security Certified Professional (OSCP+)
OffSec โ (Dec 2024)
OffSec Web Expert (OSWE)
OffSec โ (Jun 2023)
HTB Certified Bug Bounty Hunter (CBBH)
Hack The Boxโ (Aug 2022)
ย
Paper and Publications
- A DEEP EMBEDDED SELF-TAUGHT LEARNING SYSTEM AND METHOD FOR DETECTING SUSPICIOUS NETWORK BEHAVIOURS (2020)
Education
Bachelor's Degree in Computer Science
2011-2015
ย