- IT Infrastructure Implementation/Management (Windows/Linux Server, IPS, IDS, VPN, Firewall, WAF, NAC, Cisco Router/Switch)
- Penetration Test(MetaSploit, SolidStep, Application, DDoS, Web, Network)
- Network Security Traffic Analysis(Wireshark, Snort, ELK, Splunk, Graylog, SOAR, TMS)
- Programming(Python, Bash, Powershell, C++)
- AWS(Gamelift, DynamoDB, API Gateway, EC2, LightSail)
- Unreal Engine(C++, Blueprint)
- Security Control/Consulting, KPFIS
Management of SOC and Penetration Test to related to Ministry of Strategy and Finance
2022-05 ~ Present - Assist Security Inspection, NH Bank
Support internal/external inspection and guidance related to information security certification
2021-10 ~ 2022-05(0.7yrs) - Electricity Maintenance, POSCO
Organize and operate electricity and equipment systems, preventive inspections, periodic inspections, planned preventive maintenance, troubleshooting, and facility improvement.
2013-07 ~ 2017-01(3.7yrs)
-
SIEM Implementation (통합관제시스템 구축)
Security Onion v2 / ELK / Splunk를 사용한 보안이벤트 분석 및 시각화 연구
Relevant Skills : ELK, Splunk, Saltstack, Suricata, Zeek, Grafana, Strelka, Wazuh https://github.com/HarkjinDev/Security/tree/main/Write-up/SIEM -
Ransomeware Analysis (랜섬웨어 분석 및 차단 연구)
Cuckoo Sandbox를 이용한 랜섬웨어(Wannacry) 분석 및 차단 연구
Relevant Skills : Sophos UTM, ClamAV(Antivirus), Cuckoo Sandbox, Mareware Analysis, Mail Filtering https://github.com/HarkjinDev/Security/tree/main/Write-up/Ransomware -
Vulnerability Analysis (주요통신기반시설 기술적 취약점 분석/평가 스크립트 제작)
CentOS7의 주요통신기반시설 기술적 취약점 분석 및 평가 Bash Script 제작
Relevant Skills : Server/System Management, Vulnerability Analysis, Bash script https://github.com/HarkjinDev/Security/tree/main/VulnerabilityAnalysis -
ModSecurity WAF Implementation (ModSecurity WAF 구축)
ModSecurity WAF를 활용한 Web 공격 탐지 연구
Relevant Skills : WAF, Apache Web Server, Web Hacking
https://github.com/HarkjinDev/Security/tree/main/ModSecurity -
Suricata IDS/IPS Implementation (Suricata IDS/IPS 구축)
Suricata IDS/IPS를 활용한 DOS 및 Web 공격 Snort 탐지 연구
Relevant Skills : IDS, IPS, Snort, Dos/Web Attacking
https://github.com/HarkjinDev/Security/tree/main/Suricata -
RDP Vulnerability Analysis (RDP 취약점 분석 연구)
CVE-2019-0708 Bluekeep RDP 취약점에 대한 분석 및 모의해킹
Relevant Skills : Mareware Analysis, Vulnerability Analysis, Penetration Testing https://github.com/HarkjinDev/Security/tree/main/Write-up/RDP -
Wargame Challenge
FTZ(Hackme) : System Hacking
https://github.com/HarkjinDev/Security/tree/main/Reverse/HackMe
LOB(The lord of BOF) : Reverse Engineering, BOF
https://github.com/HarkjinDev/Security/tree/main/Reverse/LOB
- FishingSpot
설명 : 상용화를 목표로 3d 모바일 인디게임 2인 개발
담당 : 마이크로 서비스 기반 API 서버(Flask), 언리얼 클라이언트 서브 메뉴 인터페이스 개발, AWS DynamoDB 구축 및 관리, Google Play 관리
AWS Serverless rest API : https://github.com/HarkjinDev/Security/tree/main/AWS_Serverless_RESTAPI
Game URL : https://play.google.com/store/apps/details?id=com.OPCStudio.FishingSpot
- CCPG(개인정보관리사) - 2022-12-21
- Engineer Information Processing(정보처리기사) - 2022-06-17
- SQLD(SQL 개발자) - 2022-04-08
- Engineer Information Security(정보보안기사) - 2016-06-24
- CCNP - 2008-03-08(expired, 만료)
- Information Security Professional Course (21-03-09~21-09-07 / 6mths)
모의해킹 침해대응 정보보안 전문가 과정 - BCIT(British Columbia Institute of Technology,Canada) (Aircraft Maintenance) - 2020~2020(0.5yrs)
BCIT 항공정비학과 2학기 중퇴 - Sejong University (Aerospace Engineering) - 2009~2010(1yr)
세종대학교 우주항공공학부 1년 중퇴 - Graudated Pohang Jecheol Technical High School (Computer Network) - 2006~2009(3yrs)
포항제철공업고등학교 컴퓨터네트워크과 졸업
- 2008 National Skill Competition (information and communication) - Bronze prize
2008년 전국기능경기대회(정보통신) - 동상 - 2008 Gyeongbuk Skill Competition (information and communication) - Gold prize
2008년 경북지방기능경기대회(정보통신) - 금상 - 2007 National Skill Competition (information and communication) - Excellence prize
2007년 전국기능경기대회(정보통신) - 우수상 - 2007 Gyeongbuk Skill Competition (information and communication) - Bronze prize
2007년 경북지방기능경기대회(정보통신) - 동상