Giter Club home page Giter Club logo

A Brief Intro.

Security Researcher.

Main interests:

  • Web/Mobile Security
    • Build Automated vulnerability exploitation tools / Auxiliary vulnerability exploitation tools
    • Usage of Frida/Xposed Plugins.
    • Newly attacking vectors of Web applications (e.g. Mini-Program).
  • SAST (Static Application Security Testing)
    • Static Analysis frameworks (e.g. CodeQL), aim to build automated code audit implementations.
    • Code Analysis for JavaScript.
    • Dynamic Analysis for WebView-Based Mini-Apps.

Misc:

  • Language: Mandarin (native speaker), English (proficiency), Japanese (entry-level)
  • Piano:
    • Central Conservatory of Music: Piano 9 Degree (2015)
    • ABRSM Music Theory Grade 5 (2014)
  • MOBA: 11yoe in League of Legends (Main in Marksman).
    • Best ranking: Challenger(2018,2019), GrandMaster(2020), Master(2021,2022)
    • Media coverage: Qixiaodian LoL Montage Vol.353 (Top2)
  • MMO: 13yoe in World of Warcraft (Main in M+).
    • 5 Top 1 M+ ranking records (100 Percent in WCL) with Fire Mage/Enhancement Shaman in DF S2 Season (Asia Server) (2023)
    • 4 Top 1 M+ ranking records with Feral Druid in SL S4 Season (China Sever) (2022)
    • 3166(SL S4,Top 0.5%), 3007(SL S3 ,Top 1%) M+ Scores.
  • I am also interested in TCG: I used to play Yugioh Card Game (OCG Track), and now I am indulging in DTCG (Digimon TCG) :)

Anurag's GitHub stats

Zander Zhang's Projects

cmrfscanner icon cmrfscanner

This is the repository for the paper "Cross Miniapp Request Forgery"

codeql icon codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

fast13uy icon fast13uy

Taobao Auto Purchase Tool/ 简单的淘宝自动秒杀

joern icon joern

Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc

killwxapkg icon killwxapkg

自动化反编译微信小程序,小程序安全评估工具,发现小程序安全问题,自动解密,解包,可还原工程目录,支持Hook,小程序修改

minicat icon minicat

Mini-program Cross Page Request Forgery (MiniCPRF) Analysis Tool.

minitracker icon minitracker

MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps.

myos icon myos

模拟操作系统程序,实现了文件管理、进程管理、cpu模拟、IO设备模拟,具备人性化的可视化界面。

phpggc icon phpggc

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

vconsole icon vconsole

A lightweight, extendable front-end developer tool for mobile web page.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.