Interview with CyberSecurity Talent: Aung Kyaw Phyo

By YGN Ethical Hacker Group -

 

1) A little bit about yourself

I am Aung Kyaw Phyo, graduated from University of Computer Studies, Yangon(UCSY). Currently, I am working as an Assoc Cyber Security Analyst in Kernellix. 

2) What made you become obsessed with Cyber Security?

I am interested in finding out the ways how can I intrude and bypass targets, learning how other guys find and exploit vulnerabilities and solving challenges. These mindsets make me become a Cyber Security Analyst. 

3) Please share how you achieved OSCP certification / any recent certification if any.

In a student life, I thought that I should challenge myself to work as Cyber Security penetration tester after student life. I found out that OSCP is one of the recommended industrial certificates among security professionals and the best entry-level certificate for penetration testing field. So, I decided to take OSCP to get an eligible place. But at this time, I confused about how to start and lost my ways. But fortunately, I got a contact with Ko Ethan from Ko Myat Thu. He guided how to learn and show the ways how to achieve OSCP. I tried a lot and passed OSCP at the end of 2017. And in 2019, I achieved CRT.
  
4) How do you foresee yourself in the next couple of years?

I will try my best to sharp my cybersecurity skills. If I get a chance, I would like to work as a Red Teamer. 

5) What do you like to tell about anyone pursuing cybersecurity?

Where there's a will there's a way. Don’t lose hope to become a cybersecurity professional if you have a dream. Practice makes perfect. 

6) Please share how we can follow you.

If anyone wants to contact me, please reach me via followings:

Popular posts from this blog

CubeCart 3.0.20 (3.0.x) and lower | Multiple Cross Site Scripting Vulnerabilities

By YGN Ethical Hacker Group -
1. OVERVIEW CubeCart 3.0.20 and lower versions are vulnerable to Cross Site Scripting. 2. BACKGROUND CubeCart is an "out of the box" ecommerce shopping cart software solution which has been written to run on servers that have PHP & MySQL support. With CubeCart you can quickly setup a powerful online store which can be used to sell digital or tangible products to new and existing customers all over the world. 3. VULNERABILITY DESCRIPTION Multiple parameters are not properly sanitized, which allows attacker to conduct Cross Site Scripting attack. This may allow an attacker to create a specially crafted URL that would execute arbitrary script code in a victim's browser. 4. VERSIONS AFFECTED 3.0.20 and lower (aka 3.0.x family) 5. Affected URLs and Parameters /admin/adminusers/permissions.php (adminId parameter) /admin/categories/index.php (cat_name parameter) /admin/categories/languages.php (cat_master_id parameter) /admin/customers/ (
Read more

java.com | Arbitrary URL Redirect Vulnerability

By YGN Ethical Hacker Group -
================================== java.com | Arbitrary URL Redirect Vulnerability ================================== 1. VULNERABILITY DESCRIPTION - Arbitrary URL Redirect http://java.com/inc/BrowserRedirect1.jsp?locale=en&host=attacker.in Demo: http://yehg.net/lab/pr0js/training/view/misc/java.com_Arbitrary_URL_Redirect/ 2. VENDOR Oracle Inc http://www.oracle.com 3. VULNERABILITY STATUS FIXED 4. DISCLOSURE TIME-LINE 2011-04-19: reported vendor 2011-04-23: vendor fixed the issue 2011-04-24: vulnerability disclosed 5. REFERENCES Original Advisory URL: http://yehg.net/lab/pr0js/advisories/sites/java.com/[java.com]_url_redirection OWASP-Top-10_2010-A10: https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project SANS-TOP-23: http://www.sans.org/top25-software-errors/ CWE-601: http://cwe.mitre.org/data/definitions/601.html #yehg [2011-04-24] --------------------------------- Best regards, YGN Ethical Hacker Group Yangon, Myanmar http://yehg.net Our Lab | http://yehg.net/lab Our Dir
Read more