search
    Security expand_more
    Security chevron_right

    Offensive & defensive security insights.

    Blockchain
    Web3 and smart contract vulnerabilities.
    Cloud Security
    Infrastructure and network defense.
    Cryptography
    Encryption algorithms and principles.
    Forensics
    Digital investigation and analysis.
    Governance Risk and Compliance
    Policies, standards, and risk management.
    Hack the Box
    Offensive security practice and writeups.
    Identity and Access Management
    IAM architectures and principles.
    Mobile Security
    Securing iOS and Android applications.
    Network Security
    Protecting network infrastructure.
    Payment Card Industry Data Security Standard
    PCI DSS compliance.
    Security Operations
    Monitoring and incident response.
    Threat Intelligence
    Analyzing cyber threats.
    Vulnerabilities
    Common security flaws and mitigations.
    Web Security
    Securing web applications and APIs.
    Mobile Deep Links - Attack Surface and Pentesting Guide
    Mobile Deep Links - Attack Surface and Pentesting Guide
    Mobile Deep Links: From Concept to Attack Surface
    Learn more chevron_right
    Engineering expand_more
    Engineering chevron_right

    Scalable systems & modern engineering.

    Algorithms & Data Structures
    Core computer science concepts.
    Cloud & DevOps
    CI/CD and infrastructure code.
    Database Systems
    SQL, NoSQL, and data modeling.
    Programming Fundamentals
    Language syntax and best practices.
    SysOps & Infrastructure
    System administration and scaling.
    System Design & Architecture
    Designing scalable applications.
    UI/UX & Frontend Foundations
    Advanced CSS animations and modern frontend principles.
    Frontend & UI/UX Terminology: The Visual Language of the Web
    Frontend & UI/UX Terminology: The Visual Language of the Web
    Frontend & UI/UX Terminology: The Visual Language of the Web
    Learn more chevron_right
    AI & ML expand_more
    AI & ML chevron_right

    Generative AI & LLM architectures.

    AI Agents & Automation
    Multi-agent systems, orchestration, and AI-driven development workflows.
    GenAI
    Generative models and applications.
    Machine Learning
    Data processing and predictive models.
    Security Considerations for AI Agents
    Security Considerations for AI Agents
    Security Considerations for AI Agents
    Learn more chevron_right
    Career expand_more
    Career chevron_right

    Interview tips & career strategies.

    Certificates
    Professional certifications and study guides.
    Interview
    Preparation and technical interviews.
    Post-Interview
    Next steps and negotiations.
    Automating OSCP Reports
    Automating OSCP Reports
    Automating OSCP and Penetration Testing Reports
    Learn more chevron_right
    Personal expand_more
    Personal chevron_right

    Identity, philosophy & personal growth.

    Identity
    Personal reflections and identity.
    Life Information
    Useful tips and life hacks.
    Philosophy
    Thoughts and philosophical discussions.
    Career Roadmap & Reflection 2026
    Career Roadmap & Reflection 2026
    Series Introduction I have always lived by reflecting, planning, and taking action toward my future. In a rapidly changing technology...
    Learn more chevron_right
    Tools expand_more
    Tools chevron_right

    Hand-picked toolkits & tech tutorials.

    Exploitation
    Tools for offensive security.
    Reconnaissance
    Information gathering tools.
    Operating System
    OS-level tools and utilities.
    Jekyll
    Static site generation.
    Forensics Tools
    Digital forensics utilities.
    ELK
    Elasticsearch, Logstash, and Kibana.
    Waybackurls
    Waybackurls
    Waybackurls: Discovering Forgotten Paths for Reconnaissance
    Learn more chevron_right
    Personal

    Career Roadmap & Reflection 2026 시리즈 소개

    Series Introduction I have always lived by reflecting, planning, and taking action toward my future. In a rapidly changing technology ecosystem, my thoughts and directions continuously evolve as I encounter... 시리즈 소개 나는 항상 앞으로 무엇을 해야 할지 고민하고 계획하며 행동해 왔다. 급변하는 기술 생태계 속에서 나 역시 새로운 정보에 따라 끊임없이 변화하기에, 지금 이 시점의 생각과 방향성을 체계적인 문서로......

    Read article 기사 읽기 arrow_forward
    Career Roadmap & Reflection 2026

    Latest

    Security

    Certificate Pinning Certificate Pinning이란?

    What is Certificate Pinning? Certificate Pinning이란? Certificate Pinning은 클라이언트 애플리케이션에서 특정 서버 인증서(또는 관련 데이터를) “고정”하여 해당 인증서만 신뢰하는 방식입니다. 이를 통해 네트워크 통신......

    Hyoeun Choi Hyoeun Choi ·
    Security

    Rooting & Jailbreak 시스템의 자물쇠를 부수는 기술: 루팅과 탈옥의 모든 것

    The Art of Breaking System Locks: Everything About Rooting and Jailbreaking 시스템의 자물쇠를 부수는 기술: 루팅과 탈옥의 모든 것 스마트폰을 구매했을 때, 당신은 정말 그 기기의 완전한 주인일까요? 제조사와 운영체제 개발자는......

    Hyoeun Choi Hyoeun Choi ·
    Security

    Android Key Store & iOS Keychain Fort Knox on Your Phone: Understanding & Pentesting Android KeyStore and iOS Keychain

    Fort Knox on Your Phone: Understanding & Pentesting Android KeyStore and iOS Keychain Fort Knox on Your Phone: Understanding & Pentesting Android KeyStore and iOS Keychain 모바일 앱의 보안에서 가장 중요한 과제 중......

    Hyoeun Choi Hyoeun Choi ·
    Security

    The Anatomy of Mobile App 모바일 폴더 구조와 펜테스팅

    The Anatomy of Mobile App and Penetration Testing 모바일 폴더 구조와 펜테스팅 공통적으로 찾아야 할 민감 정보 유형 어떤 운영체제의 앱이든, 다음 유형의 정보들이 앱의 로컬 저장소에 있다면......

    Hyoeun Choi Hyoeun Choi ·
    Security

    Mobile Platform Security Mobile Platform Security

    Mobile Platform Security: A Comparative Analysis of iOS and Android Strategies 모바일 플랫폼 보안: iOS와 Android의 전략 비교 분석 현대 사회에서 스마트폰은 단순한 통신 기기를 넘어 개인 정보, 금융 거래, 그리고......

    Hyoeun Choi Hyoeun Choi ·
    Security

    Types of Mobile App 네이티브(Native) 앱

    The three main approaches to mobile application development are Native, Cross-Platform, and Hybrid apps. Each method has its unique characteristics,... 모바일 애플리케이션 개발 방식은 크게 세 가지로 나눌 수 있습니다: 네이티브(Native) 앱, 크로스 플랫폼(Cross-Platform) 앱, 그리고 하이브리드(Hybrid) 앱입니다. 각 방식은......

    Hyoeun Choi Hyoeun Choi ·
    Security

    Proxy Protocols 스마트 컨트랙트의 한계를 넘는 ‘프록시(Proxy) 프로토콜’ 이해하기

    Understanding ‘Proxy Protocols’: Overcoming the Limitations of Smart Contracts 스마트 컨트랙트의 한계를 넘는 ‘프록시(Proxy) 프로토콜’ 이해하기 블록체인의 가장 큰 특징 중 하나는 ‘수정 불가능성(Immutability)’입니다. 하지만 서비스 운영 중 치명적인......

    Hyoeun Choi Hyoeun Choi ·
    Security

    Mobile Code Signing 모바일 코드 사이닝: 앱의 서명이 보안 경계선이 되는 이유

    Mobile Code Signing: Why Your App’s Signature Is a Security Boundary 모바일 코드 사이닝: 앱의 서명이 보안 경계선이 되는 이유 모바일 펜테스트를 하다 보면 반드시 맞닥뜨리는 벽이 있습니다. 리패키징한 IPA가 설치......

    Hyoeun Choi Hyoeun Choi ·
    Security

    Decentralized Finance (DeFi) DeFi(탈중앙화 금융)란

    What is DeFi (Decentralized Finance)? DeFi(탈중앙화 금융)란 금융 시스템은 수백 년 동안 은행, 증권사, 정부와 같은 중앙 집중식 기관을 중심으로 운영되어 왔습니다. 하지만 블록체인 기술의......

    Hyoeun Choi Hyoeun Choi ·