Skip to content
View Sy2n0's full-sized avatar
Happy Hacking
Happy Hacking
31 followers · 66 following

Achievements

Achievement: QuickdrawAchievement: Pull SharkAchievement: YOLO

Achievements

Achievement: QuickdrawAchievement: Pull SharkAchievement: YOLO

Highlights

Organizations

@HUB-EDUCATION

Block or report Sy2n0

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Sy2n0/README.md

header

Profile

  • Google Cloud VRP - Honorable Mention ( 2026.01 )
  • Ecological Disturbance Species ( 2025.12.23 ~ )
  • InsertCoinToPwn ( 2025.10.27 ~ )
  • R.O.K NAVY - CERT ( 2024.06 ~ 2026.02 )
  • 백석대학교 NGMS LAB ( 2023.03 ~ )
  • 백석대학교 HUB ( 2023.03 ~ )
  • T3N4CI0US ( 2019.05 ~ 2024.01 )
  • 인코그니토 2021 프로젝트 및 행사 참가 ( Anti-root )
  • KSCY 17 STAFF ( 청소년 )
  • 현대오토에버 화이트해커 양성 교육 ( 2022 & 우수 장학생 )

👾 Discovered Vulnerabilities

[CVE-2026-1665] Command Injection in nvm

  • Target: nvm-sh/nvm
  • Summary: nvmwget으로 파일을 다운로드할 때 환경 변수 검증이 누락되어, 공격자가 쉘 명령어를 강제로 실행시킬 수 있는 커맨드 인젝션(Command Injection) 취약점
  • Advisory: GHSA-4fc5-r4vr-8rp7

[CVE-2025-69262] Command Injection in pnpm

  • Target: pnpm/pnpm
  • Summary: 환경 변수 치환 로직을 악용한 OS 명령어 삽입 취약점. CI/CD 및 빌드 환경에서 임의 코드 실행 위험.
  • Advisory: GHSA-2phv-j68v-wwqx

[CVE-2025-14550] Potential denial-of-service vulnerability via repeated headers when using ASGI

  • Target: django/django
  • Summary: 중복된 HTTP 헤더를 처리할 때 문자열을 반복해서 합치는 비효율적인 방식(Super-linear) 때문에, 공격자가 적은 비용으로 서버를 마비시킬 수 있는 서비스 거부(DoS) 취약점
  • Advisory: GHSA-33mw-q7rj-mjwj

🚩 Activity

  • 2025

    • 화이트햇 콘테스트 2025 본선 (Team 1TSN0R1)
    • CCE 2025 본선 (Team Root or Die)

  • 2024

    • 해군 AI 경진대회 본선 (Team CERT)
    • 화이트햇 콘테스트 2024 본선 (Team 우승하면 전문하사)

  • 2022

    • CSC CTF 7등 ( 팀전 )
    • wtfctf 2022 8등 ( 팀전 )
    • Digital Overdose Conference 2022 CTF ( 팀전 )

  • 2021

    • FweeFwop CTF 3등 ( 개인전 ) 🥉
    • DamnCon 5등 ( 팀전 )
    • Metared CTF 5th Stage 9등 ( 팀전 )
    • niteCTF 13등 ( 팀전 )
    • TFC CTF 14등 ( 팀전 )
    • Tamil CTF 19등 ( 팀전 )

🚩 CTF Hosting

  • T3N4CI0US CTF - Christmas 주최 및 출제 (Normaltic & T3N4CI0US)
    • Category : Pwnable, Crypto
  • T3N4CI0US CTF - 설날 주최 및 출제 (T3N4CI0US)
    • Category : MISC
  • T3N4CI0US CTF 2022 주최 및 출제 (Latent_Hacker & T3N4CI0US)
    • Category : Pwnable, Crypto
  • T3N4CI0US CTF - Escape 주최 및 출제
    • Category : Pwnable, Crypto, Reversing, Web, Forensic
  • ESCAPE CTF 2023 Preliminary 주최 (T3N4CI0US & YESS)
    • Category : Pwnable

🛰️ Project

  • HUB ACADEMY Platform
  • HUB CTF Platform
  • GZ::CTF Platform (Korean Translate)

Contact

github-contribution-grid-snake

footer

Pinned Loading

  1. I'm an early 🐤 I'm an early 🐤
    1 
    🌞 Morning    42 commits  █████▏░░░░░░░░░░░░░░░  24.7%
    2 
    🌆 Daytime    66 commits  ████████▏░░░░░░░░░░░░  38.8%
    3 
    🌃 Evening    46 commits  █████▋░░░░░░░░░░░░░░░  27.1%
    4 
    🌙 Night      16 commits  █▉░░░░░░░░░░░░░░░░░░░   9.4%
  2. productive-box productive-box Public

    Forked from techinpark/productive-box

    Are you an early 🐤 or a night 🦉? Let's check out in gist

    TypeScript 1

  3. Activities Activities Public

    Python 2

  4. game box game box
    1 
    game box
  5. Kernel-exploit-tech Kernel-exploit-tech Public

    Forked from Lazenca/Kernel-exploit-tech

    Linux Kernel exploitation Tutorial.

    C

  6. Sy2n0 Sy2n0 Public