Profiles search

Kai Lang(Kenny) Chang

Security Engineer at Samsung Research America
San Francisco, CA, United States

Details

Education: Professional Certificate

Unix/Linux System Administration

University of California, Berkeley



Professsional Certificate

Computer and Information Systems Security/Information Assurance

Offsenive Security, Penetration Testing with Kali Linux



Bachelor of Science (B.S.)

Electrical and Electronics Engineering

Oriental Institute of Technology

2004 : 2006

Associate of Science (A.S.)

Computer Science

National Chin-Yi University of Technology

2002 : 2004
Experience: Web Application Penetration Test (black box), Servers Hardening, Access Control Audit, Nexpose vulnerability assessment, HIPAA trained, cloud security

2019 : Present

Samsung Research America (SRA)

Sr. Information Security

Penetration Testing webapp, wordpress, including application fuzzing, upload bind/reverse shells, buffer overflown technique, identify php codes vulnerability, Linux/windows privilege escalation, existing infrastructures and patch kernels and identify and update existing vulnerable applications and validate server configurations for vulnerabilities.

2017 : 2019

Espresso Roma Corp

Security Engineer

• Built entire internal network with Linux servers, including dhcp, Postfix/Dovecot with TLS encrypted email

system, and Snort, Network intrusion detection systems.

• Designed and developed a security camera system, including the purchase, installation, and network

configuration.

• Penetration Tester, Testing Infrastructure Security with Metasploit Framework, Nessus and nexpose

• Hosting, maintaining multiple domains and websites. Apache, DNS records.

• Building VPN for oversea clients.

• Upgraded and maintained the company’s payroll system.

• Maintaining any hardware or technical devices functionalities.

• Built wireless network (Linux box) and music playing station for cafes. (Hostapd)

• Implementation with iPad based POS, Revel to entire corporation stores.

• Built email blasting marketing tools with bash shell script.

2014 : 2019

Espresso Roma Corp

DevOps/System Administrator

•Conducted motherboard validation, hardware and compatibilities test, environment stress tests, and durability tests.

• Wrote standard operating procedures of motherboard hardware validation for Linux (Fedora Core).

• Worked in conjunction with Intel for Linux (OpenSuSE) validation for CPUs and chipsets.

2006 : 2006

GIGABYTE

Validation Engineer
Company: Samsung Research America (SRA)
Years of Experience: 10

Skills

Ansible, CSRF, Information Security, Log Analysis, Penetration Testing, Python, Reverse Engineering, Secure Code Review, SQL Injection, Terraform, Vim, Vulnerability Research, XSS

About

· OSCP, Penetration Tester in Web Application and Infrastructure

· Github: https://github.com/kenmimic

· Code Analysis/review, Static PenTest, Reversed Engineering code analysis in Android App, DotNet, Java

· Exploits writing in Python, Shell code writing in assembly. SQL injection analysis.

· Purple/Blue team collaborations, Log Parsing, build enumeration tools with Python.

· Build CTF VMs environment for practice, sharpening skills.

· Expertise in networking, system administration, programming in Python, C, Java, Shell, Editor: vim, and various Unix/Linux utilities/tools.

· In 2013-2014, I have collaborated with the Federal Bureau of Investigation for cyber intrusions. I have provided intrusion data (including attack time, sourced ips, attack type…etc) to special Agent, Thomas Wei