Skip to content

Xvezda

Y. Choi  Xvezda

Front-End Developer, Web Application Bug Hunter

Skills

Projects

Portfolio website 

Right HERE. Built for blogging and showcase my own works.

#blog

DnF Akaib 

Also known as "Dungeon Fighter Online Akaib" provides in-game informations on web by using Neople OpenAPI.

#game#open api

SaveTheLogin 

Web browser extension to protect user from web application threats, such as MITM, session hijacking, phishing. Support browsers are Google Chrome, Mozilla FireFox, Opera and Naver Whale.

#security#extension#web browser

Akaib OpenAPI 

Akaib's REST API based open API server.

#api

Vue chrome i18n component 

Vue plugin for chrome extension internationalization.

#vuejs#component#plugin#chrome

Vishop 

The unofficial VIM script publisher command line client

#vim#package manager#command line tool

tispoon 

Python library implementation of Tistory blogging API.

#python#api#blog#blogging

fist 

Fast gist uploader. Upload binary, image, text... whatever to gist.

#python#api#github#gist

FixImg 

Chrome extension which manipulates HTTP requests to fix broken images.

#extension#chrome

XE typofix addon 

Fix search keyword typo with NAVER OpenAPI.

#typo#addon#xpressengine

XE gravatar addon 

Replace XpressEngine member profiles with gravatar.

#gravatar#addon#xpressengine

XE zip download addon 

Make and download attached files to zip.

#zip#addon#xpressengine

See more projects...

History

SSTF OpenCTF / 2nd place

Samsung Security Tech Forum w/ Team Defenit · 2019
KITRI - BEST OF THE BEST 8th
Vulnerability analysis track · 2019

NAVER Finance Reflected XSS

HTML Injection / finance.naver.com · 2017

NAVER Cafe Reflected XSS

HTML Injection / cafe.naver.com · 2017

XpressEngine Reflected XSS

XEVE-16-005 · 2016

NAVER Blog Reflected XSS

JavaScript Injection / blog.naver.com · 2016

NAVER Cafe Reflected XSS

JavaScript Injection / cafe.naver.com · 2016

NAVER Blog Stored XSS

JavaScript Injection / blog.naver.com · 2016

NAVER Blog Reflected XSS

JavaScript Injection / blog.naver.com · 2016

NAVER Cafe Stored XSS

JavaScript Injection / cafe.naver.com · 2015

XpressEngine Reflected XSS

JavaScript Injection / Version 1.7.7.2 · 2014

XpressEngine Reflected XSS

JavaScript Injection / Version 1.7.6 · 2014
Korea Animation High School
Department of computer game development · 2012

Contact

[email protected]

Recent Posts

Analyzing CloudFlare email protection algorithm

Hello world!