JunYoung Park (@candymate)
Github : @candymate
Twitter : @siwu_network (candymate)
Blog : https://candymate.tistory.com
Team : None - previously PLUS (POSTECH Laboratory for Unix Security, https://plus.or.kr)
Academics
Daegu Science High School 27th (2014/02 ~ 2017/02)
Daegu, South Korea
Pohang University of Science and Technology (POSTECH) (2017/02~2022/02)
Pohang, South Korea
B.S in Computer Science and Engineering
Korea Advanced Institute of Science and Technology (KAIST) (2022/02~PRESENT)
Daejeon, South Korea
M.S in Graduate School of Information Security (GSIS), KAIST hacking lab
Advisor: Insu Yun
Research Interests
Automated software testing, automatic binary analysis
Portfolio
Project
KITRI BoB 9th Vulnerability Analysis (2020)
- Project: Virtualization Software Bug Hunting - VirtualBoBs
- Result : 3 CVEs (CVE-2021-2086, CVE-2021-2124, CVE-2021-2127), 3 ZDI-CAN (ZDI-CAN-12407, ZDI-CAN-12621, ZDI-CAN-12761 - Total $6,500)
CTF
Only Major CTFs are listed. I've participated a lot of CTFs as PLUS, or as other teams.
There might be other major CTFs I forgot.
Team
POSTECH Laboratory for Unix Security (PLUS) (2017~2021)
Major Participations
DEFCON 26, 27, 28 Finalist (each as KaisHack+PLUS+GoN, seoulplusbadass, koreanbadass)
Codegate CTF Finals (University) 2018, 2019, 2020 (PLUS - each 4th, 1st, 2nd)
Defenit CTF 2020 1st (as ToEatSushi)
CVE
- VirtualBox CVE-2021-2127 - by VirtualBoBs
- VirtualBox CVE-2021-2266 (Reward not open, Personal work extended from project)
- Firefox CVE-2023-29548