Harold Z. Pentester


info

An experienced professional security analyst with more than 10 years experiences in both web security and penetration. I enjoy movies, running and PS4.

Skills

  • Penetration
    Injections 10 years
    XSS 10 years
    LFI/RFI 10 years
    XXE 10 years
    Signal 2 years
    Others few years
  • System
    Linux 5 years
    Windows 5 years
    AIX 2 years
    HP-UX 2 years
  • Database
    MySQL 4 years
    Oracle 4 years
    MsSQL 3 years
  • Network
    Cisco 2 years
    Switch 2 years
    Router 2 years

employment

Security Engineer, Pulse iD

2017-08 — Present | Security Penetration Pen test

Penetration test for Web Applications, Mobile Applications, APIs and Servers.

  • Penetration test for their Web Application, Mobile Application and APIs.
  • Based on security issues write the security report.
  • Design and deploy security policy.

Security Analyst, Proximiti

2015-10 — 2017-08 | Security Penetration Pen test

Penetration test for Web Applications, Mobile Applications, APIs and Servers.

  • Penetration test for their Web Application, Mobile Application and APIs.
  • Based on security issues write the security report.
  • Design and deploy security policy.

Guest (Workshop) Lecturer, RMIT

2015-08 — 2018-07 | Lecture Presentation

Delivered 3 workshops in each semester, which related signal security, wifi security and web security.

  • Delivered workshops, which have different topics, during each semester.
  • Based on the topics, create the PPT and workshop environment.

System & Database Analyst, Beijing Golden Point Outsourcing Service

2012-11 — 2014-12 | Oracle Linux AIX HP-UX Administrator

Management Databases and Systems, which include install, troubleshooting and optimization.

  • Install, upgrade and maintain Oracle database (RAC), GoldenGate, Linux, Windows, AIX, HP-UX.
  • Troubleshooting Oracle database, maintain Oracle database. The total database’s size is 2TB.
  • Maintain and troubleshooting systems, include: install software and servers.
  • Maintain AIX and HP-UX servers.

projects

Bad Password Generator, Bad.PW

2017-01 — Present | Bad Password

Generate bad passwords for earthlings.

She is a Boy, She.By

2018-05 — Present | Traps

A website for traps.

XSS By, XSS.By

2018-05 — Present | Traps

18/05/2018, Just start :D.


education

CSIT, RMIT University

2015-09 — 2018-07 | Security Database Networks C Java HTTP TCP/IP

Graduate of RMIT University, winter of 2018.


writing

My Blog, SpZ.io

2017

This is my personal blog


recognition

Report Security Issues, Telanto

2018

Report security issues to Telanto.

System Forensics, an Australia very start-up company

2018

Nginx Log Forensics, Linux Log Forensics for an Australia very start-up company.

Report a Security Issue, RMIT

2018

Report a system security issue to RMIT.

CheckPoint Security Challenge 2018, CheckPoint

2018

Won the first prize in the game.

CheckPoint Security Challenge 2017, CheckPoint

2017

Won the 5th prize in the game.

Report Security Issues, A CTF Game

2017

Report a CTF Game security issue.

CySCA Security Challenge 2017, CySCA

2017

Won the 14th prize in the game.

Report a Security Issue, iFixIt.com

2017

Report a security issue to iFixIt.

Golden Key International Honour Society, Golden Key

2017

Membership into Golden Key is offered, for a fee, to undergraduate and graduate students recognized to be among the top 15% of their class by GPA.

CySCA Security Challenge 2015, CySCA

2015

Won the 28th prize in the game.

White-Hat Security Analyst, Wooyun

2008

A white hat secrity analyst in Wooyun.


testimonials

iFixIt

Thank you for your help with keeping the iFixit community safe. We really appreciate it.

Christian

thanks so much for sharing!


references

Shak, CTO @ Pulse id

Contact information available on request.

Fengling Han, RMIT Lecture

Contact information available on request.


interests

Security

Current

A penetration tester.

PlayStation 4

Current

A game player.