arrow-left arrow-right brightness-2 chevron-left chevron-right circle-half-full dots-horizontal facebook-box facebook loader magnify menu-down rss-box star twitter-box twitter white-balance-sunny window-close

$(whoami)

Bio

Certifications

  • EC-Council Certified Ethical Hacker v9 (CEH)
  • EC-Council Certified Security Analyst v9 (ECSA)
  • Certified Red Team Professional (CRTP)
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Web Expert (OSWE)
  • Certified Red Team Expert (CRTE)

Target Certs in 2021

  • Certified Information Security Manager (CISM) - reviewing
  • CREST Practitioner Security Analyst (CPSA) - planning
  • CREST Registered Penetration Tester (CRT) - planning

Achievements

  • Champion of Cyber Security Philippines - CERT (CSP-CERT)'s Red Team CTF
  • 2nd Placer of ROOTCON 2018 Capture the Flag Competition
  • Champion of ROOTCON 2019 Capture the Flag Competition
  • Top 7 in the 1st Facebook and Google's BountyCon (Live Hacking Event) in Singapore
  • Top 3 in the HackTheBox 2v2 Battlegrounds competition with Ameer Pornillos

CVEs and Findings (No longer updated)

(low quality CVEs lol)

Finding Company CVE
Missing base domain resulting to external redirection Facebook -
Download a Copy of any Facebook Page Facebook -
Hijacking any website Weebly -
URI Obfuscation in Brave 0.12.4 Brave CVE-2017-8458
Status Bar Obfuscation in Brave 0.12.4 Brave CVE-2017-8459
XSS to File Inclusion in Trello iOS 4.0.8 Trello CVE-2017-9244
User and Team Impersonation on HackTheBox HackTheBox -

Social

Site Link Comments
GitHub https://github.com/ajdumanhug Random code and stuff
HackTheBox https://www.hackthebox.eu/profile/55589 Hacking activities
Twitter https://twitter.com/ajdumanhug Social stuff
LinkedIn https://www.linkedin.com/in/allanjaydumanhug/ Professional stuff