About Me

Posted on: July 24, 2024 | Reading time: 3 minutes | Word count: 610 words | Author: Dang Duong Minh Nhat

Welcome to my blog!

I’m Dang Duong Minh Nhat, a Computer Science graduate-to-be from HCMUT, with a strong interest in cybersecurity, especially cryptography. I enjoy exploring how systems work — and how they break — through both research and hands-on challenges. This blog is a space where I document what I learn, share projects, and connect with others who share the same passion.

Experiences

• Intern at Kaspersky (Dec 2024 – Apr 2025)

  • Studied the workflow of a Security Operations Center (SOC): incident detection, alert triage, log analysis, SIEM concepts.

• Intern at OPSWAT Software Vietnam LLC (May 2024 - July 2024)

  • Participated in the Critical Infrastructure Cybersecurity Graduate Fellowship Program.
  • Focused on vulnerability identification, exploit development, and defense strategies.
  • Published report on “Protecting OT Systems from Remote Attacks.”
  • Researched well-known CVEs and documented findings on GitHub: OPSWAT CVE Research.

• Core Member of BKISC (Bach Khoa Information Security Club) (2022 - Present)

  • Specialized in Cryptography research and CTF challenges.
  • Contributed to security research and club activities.

• Teaching Assistant for Discrete Structures Course (August 2023 - December 2023)

  • Assisted students with discrete mathematics, data structures, and graph theory.
  • Graded assignments and provided clarification on course materials.

Skills

• English: TOEIC Certificate with a score of 775 (taken in August 2024).
• Cryptography: Regularly practice on CryptoHack, ranked 151st globally and 21st in Vietnam (as of Oct. 22, 2024). Proficient in:
  • Symmetric Ciphers, RSA, Diffie-Hellman, Elliptic Curves, Hash Functions, Web Cryptography.
• Web Exploitation: Knowledgeable in SQL Injection, Cross-Site Scripting (XSS), Authentication/Authorization vulnerabilities.
• Programming:
  • C/C++: Proficient in fundamentals, OOP, data structure and algorithms. Familiar with basic Windows API for red teaming, including syscall manipulation, API unhooking, and in-memory execution.
  • Python, Sage: Used for cryptography research and Capture the Flag (CTF) challenges.
  • HTML, CSS, JavaScript, PHP: Web development experience through online resources and personal projects.
• Mathematics: Strong background in number theory and algorithms for cryptographic applications.
• Version Control: Proficient in Git for project management and collaboration.
• Soft Skills: Teamwork, Problem-Solving, Leadership, Responsibility, Multi-tasking.

Awards & Certifications

• Certified in Windows API for Red Team Introduction (Red Team Leader, CourseStack)
• Certified in Sound the Alarm: Detection and Response (Google, Coursera)
• Certified in Assets, Threats, and Vulnerabilities (Google, Coursera)
• Certified in Tools of the Trade: Linux and SQL (Google, Coursera)
• Certified in Connect and Protect: Networks and Network Security (Google, Coursera)
• Certified in Foundations of Cybersecurity (Google, Coursera)
• Certified in Play It Safe: Manage Security Risks (Google, Coursera)
• Certified in Ethical Hacking Expert (OPSWAT)
• Certified in WebApp Exploitation Expert (OPSWAT)
• Certified in Password Cracking Expert (OPSWAT)
• Certified in Introduction to Critical Infrastructure Protection (OPSWAT)
• Second Prize - NSUCRYPTO 2024 (International Cryptography Olympiad, University’s Team Category)
• Second Prize - NSUCRYPTO 2023 (International Cryptography Olympiad, University’s Team Category)
• Top 7 Semifinalist - ASEAN Student Contest on Information Security (ASCIS) 2023
• Consolation Prize Finalist - ASEAN Student Contest on Information Security (ASCIS) 2023
• Third Prize - Vietnam Mathematics Olympiad (VMO) 2021
• Gold Cup Winners’ Cup - International Tournament Mathematics Without Borders (Bulgaria, 2020)
• Silver Medal - Singapore International Math Olympiad Challenge (Simoc) 2020
• Silver Medal - Singapore and Asian Schools Math Olympiad (SASMO) 2020

Personal Projects

• Circheck: A static analysis tool for Circom source code, designed to detect security vulnerabilities in Zero-Knowledge Proof (ZKP) circuits written in the Circom language.
• Getting Public IP Address: Investigated phishing techniques using disguised files and social engineering, utilized Canarytokens to track unauthorized access.
• Finding IP Address: Analyzed URL spoofing vulnerabilities in Zalo and Telegram to extract IP addresses, highlighted security risks and provided protection recommendations.

Connect with Me

Thank you for taking the time to learn about me. Connect with me on Facebook, LinkedIn, via email at dangduongminhnhat2003@gmail.com, GitHub, or by phone at +84 829 258 815 .