Experience
Work Experience
2022/08 - Present
Chief Executive Officer
Kiwis Co., Ltd.
- •Design and delivery of hands-on corporate security testing training programs
- •Offensive and defensive technique research and courseware development
- •Security consulting for enterprise defense and risk reduction
- •Development and maintenance of security assessment tools
2019/09 - 2022/01
Security Consultant
Leukocyte-Lab Co., Ltd.
- •Corporate security services (vulnerability scanning, penetration testing, red team exercises, security assessments)
- •IoT device automated assessment — ArgusHack-Carrier
- •IoT device vulnerability research
- •Project coordination
2016/09 - 2019/08
Security Engineer
AAA Security Technology Co., Ltd.
- •Built and maintained a security intelligence analysis platform using Django
- •Developed and maintained web systems for government-funded engineering education and talent development projects
- •Assisted with host vulnerability scanning and penetration testing services
2016/09 - 2019/08
Assistant Engineer
Information Security Research Center, Feng Chia University
- •Member of the project team for corporate security services (vulnerability scanning, penetration testing, cloud app assessment, social engineering email services)
- •Host vulnerability scanning service projects for technology companies
Community & Club Experience
2019 - Present
WEBPT Group Lead
HITCON GIRLS
- •Mentoring on WEBPT (web penetration testing) knowledge and techniques
- •Planning WEBPT course content
- •Organizing events and managing study groups
2021/07 - 2022/06
7th & 8th President / Security Instructor
Information Security Research Club, NTUST
- •Planning and execution of the club's annual program
- •Design and teaching of hands-on security courses
2018/07 - 2019/06
Advisor / Security Instructor
HackerSir, Feng Chia University (5th term)
- •Security course planning and teaching guidance
- •CTF competition training and technical mentoring
- •Advising on club development strategy
- •Coordinating cross-campus security club collaboration projects
- •Sharing practical security experience and career consulting
- •Matching corporate resources and internship opportunities
2017/07 - 2018/06
President / Network Admin / Security Instructor
HackerSir, Feng Chia University (4th term)
- •Planning and execution of the club's annual program
- •Design and teaching of hands-on security courses
- •Negotiating and managing corporate collaboration projects
- •Club resource allocation and staffing
- •Planning recruitment and promotional events
Certifications
15 professional certifications
OffSec Certified Expert 3 (OSCE3)
Offensive Security
2025/05/08
OSED
Advanced
OffSec Exploit Developer
2025/05/08
OSEP
Advanced
OffSec Experienced Penetration Tester
2025/04/12
OSWE
Advanced
OffSec Web Expert
2024/11/26
OSCP
Intermediate
OffSec Certified Professional
2024/02/24
OSWA
OffSec Web Assessor
2024/10/30
OSCC-SEC
OffSec Certified CyberCore
2025/05/03
OSTH
OffSec Threat Hunter
2025/05/02
OSWP
OffSec Wireless Professional
2025/05/01
OSCC-SJD
OffSec Certified CyberCore
2025/05/01
VHL Advanced+
Virtual Hacking Labs
VHL Basic
Virtual Hacking Labs
iPAS Intermediate
Information Security Engineer (Industrial Development Bureau, MOEA)
iPAS Foundational
Information Security Engineer (Industrial Development Bureau, MOEA)
Education
National Taiwan University of Science and Technology
M.S., Graduate Institute of Digital Learning and Education
National Taiwan University of Science and Technology
M.S., Department of Computer Science and Information Engineering
Feng Chia University
B.S., Department of Computer Science and Information Engineering
Skills
Tools
HTML5
Python
CSS3
JavaScript
Expertise
Django / Python Web Development
Frontend Web Development (HTML, CSS, JavaScript)
Penetration Testing
Web Security
Vulnerability Scanning
Packet Sniffing
Social Engineering
OSINT
Speaking & Teaching
130+ sessions across 2017-2026
| Organization | Topic |
|---|---|
| National Taiwan University | How Close Security Is to All of Us (01/09) |
| Dream Mall | AI-Empowered Productivity (01/23) |
| Kiwis Livestream | OWASP TOP 10 & CWE TOP 25 I (01/28) |
| Médecins Sans Frontières (MSF) | AI-Empowered Productivity (02/05) |
| Kiwis Livestream | OWASP TOP 10 & CWE TOP 25 II (02/25) |
| Chimei | AI-Empowered Productivity (03/20) |
| Kiwis Livestream | Kali Linux Hands-On: Common Tools, Attack Scenarios and a Defender's Mindset (03/25) |
| China Times Weekly | AI-Empowered Productivity (03/30) |
| Kiwis Livestream | Threat Modeling × AI Development × Attacker Mindset (04/29) |
| Agricultural Technology Research Institute | AI Security (05/03) |
| Kaohsiung Medical University | AI Empowerment: Hands-on Digital Tools for Boosting Productivity (05/14) |
| Garmin | AI Empowerment: Hands-on Digital Tools for Boosting Productivity (05/15) |
| Yongping Senior High School | Security Offense & Defense: Cracking Hacker Techniques (05/21) |
| Kiwis Livestream | Intro to Windows Penetration Testing: MS17-010 × msfconsole × Meterpreter (05/27) |
| CDE | Security Course (05/28) |
| Organization | Topic |
|---|---|
| Breeze Group | AI Security (05/19) |
| Far Eastern Electronic Toll Collection (FETC) | OSINT and Phishing Threats in Daily Life (06/12) |
| HITCON | CR Briefing (06/10) |
| Long Bon Construction | How Close Security Is to All of Us (06/17) |
| Kiwis Livestream | Self-Learning Security Without Getting Lost: The Most Effective Learning Resources (01/22) |
| Kiwis Livestream | API Security (02/26) |
| Kiwis Livestream | IoT Security (03/26) |
| Kiwis Livestream | Where Security Meets AI: Talent, Technology and the Future (04/30) |
| Kiwis Livestream | OffSec Learn Unlimited Certification Experience Sharing (05/28) |
| Kiwis Livestream | OT Security (ICS Security) Hands-on Demo (06/25) |
| Kiwis Livestream | Large Language Models (07/30) |
| Kiwis Livestream | Learning Security Through Diagrams: From Infrastructure to Offense & Defense (08/27) |
| Kiwis Livestream | Software Supply Chain Governance and SBOM (09/24) |
| Kiwis Livestream | Windows AD Security (10/29) |
| Kiwis Livestream | Windows AD Security 2 (11/26) |
| Kiwis Livestream | Windows AD Security 3 (12/24) |
| Médecins Sans Frontières (MSF) | OSINT and Phishing Threats in Daily Life (07/03) |
| Institute for Information Industry (III) | Security course (07/09) |
| National Yang Ming Chiao Tung University | Large Language Model Security (07/30) |
| Civil Servant Training | Large Language Model Security (07/31) |
| Pingtung County Public Health Bureau | Security course (08/01) |
| Bank SinoPac | AI Security (08/08) |
| Mega Bank | Advanced Web Security (08/07) |
| Mega Bank | IoT Security Practices and Risk Prevention (08/14) |
| Taiwan Business Bank | IoT Security (08/18) |
| vLAB Security Know-How Series | Become a Security Pro from Zero: AI Guides You Step by Step (08/19) |
| Taiwan Institute of Economic Research | AI Security (08/29) |
| Ministry of Finance | Hands-on Security Course (09/04) |
| NTUST Entrepreneurship Talk | A Security Professional's Guide to the Startup Side Quest (09/09) |
| Taiwan High Speed Rail | Security course (09/13) |
| National Sun Yat-sen University | How Close Security Is to All of Us (09/18) |
| Railway Bureau | AI Security (09/19) |
| National Immigration Agency | Security Awareness Training (09/21) |
| Open Source & DevSecOps | Automation Tools (09/24) |
| SSDLC Course | Secure Software Development Lifecycle (10/21) |
| MIS Seminar | AI Security (10/01) |
| Eslite Living | Security course (10/02) |
| AI-Empowered Productivity Series | Boosting Work Efficiency (10/08, 10/14, 11/13, 11/14) |
| Feng Chia University | AI Security (10/31) |
| Médecins Sans Frontières (MSF) | Supply Chain Security Training (11/13) |
| Yango Learning | How Close Security Is to All of Us (11/24) |
| Kaohsiung Medical University | How Close Security Is to All of Us (11/20) |
| JSDC 2025 | From Attack to Defense: A Practical Mindset for Systematically Learning Web Security and Penetration Testing (11/29) |
| Organization | Topic |
|---|---|
| TUL Corporation | Security Awareness (01/11) |
| Kiwis Livestream | Security Learning Resources: How to Begin a Career in Security (02/28) |
| Médecins Sans Frontières (MSF) | Security Check-up Service (02) |
| Kiwis Livestream | Mastering Key Skills in Web Protection and Penetration Testing (03/27) |
| Fu Hsing Senior High School | Information Security Education (03/12) |
| Yongping Senior High School | Information Security Education (03/08, 05/29) |
| Far Eastern Electronic Toll Collection (FETC) | IoT Security (03) |
| Inventec | 2024 How Close Hackers Are to You (04) |
| Hsinchu Girls' Senior High School | Web Security: Developing an Attacker's Mindset (04/24) |
| Da-Yeh University | Information Security Education (04/26) |
| Kiwis Livestream | VPN Battle Royale: Why You Can Still Be Tracked While Using a VPN (04) |
| Kiwis Livestream | Hacking Exposed: The Injection Attacks Around Us (05/29) |
| Occupational Safety and Health Administration | Security Training (06) |
| Kiwis Livestream | Critical Infrastructure Security: Understanding ICS Security (06/26) |
| Kiwis Livestream | IoT Security: Understanding Common IoT Vulnerabilities Through Practice (07/31) |
| Far Eastern Electronic Toll Collection (FETC) | API Security and Open Source Security (08) |
| Kiwis Livestream | API Security (08/21) |
| Taiwan Institute of Economic Research | 2024 How Close Hackers Are to You (09/09) |
| Kiwis Livestream | Threat Modeling (09/25) |
| Kiwis Livestream | MITRE ATT&CK (09/30) |
| National Chung Cheng University | Web Security: Developing an Attacker's Mindset (10/01, 10/15) |
| Médecins Sans Frontières (MSF) | AI Security Awareness (11/14) |
| National Kaohsiung University of Science and Technology | Security and AI (11/22) |
| Songshan Commercial & Home Economics Vocational High School | Security Awareness in the AI Era (11/27) |
| Kiwis Livestream | SSDLC Secure Coding (11/27) |
| Kiwis Livestream | Linux Penetration Testing (12/25) |
| Organization | Topic |
|---|---|
| National Taichung Industrial High School | Building Vulnerable Environments Step by Step (02/07) |
| Mentored Instructor Training | Security Issues Instructors Also Face (03/09) |
| Kang Hsuan Educational Publishing | Security Awareness and Secure Development (06) |
| HITCON TRAINING | Information Security Training (07/10-07/14) |
| Occupational Safety and Health Administration | 2023 How Close Security Is to You (07) |
| EZ-Goal Technology | Information Security Training (08) |
| Hsinchu City Council | 2023 How Close Security Is to You (09) |
| Chang Gung University | Beyond the Engineer's Boundary: The Infinite Possibilities of Security and Entrepreneurship (09/20) |
| Mega Bank | Web Security (10) |
| Yango Learning | The Moat of the Information Age (10/20) |
| Yongping Senior High School | Information Security Education (11/09) |
| National Chiayi University | Web Security: Developing an Attacker's Mindset (11/21, 11/28) |
| National Taipei University of Technology | Information Security in Practice (11/20, 11/27) |
| Shengyu Group | Hands-on Security Course (11) |
| Médecins Sans Frontières (MSF) | Security Awareness Training (11) |
| HITCON GIRLS | Web Security (11/25) |
| TCA | Security Awareness Training and Cultivation (12/14) |
| Organization | Topic |
|---|---|
| High School Security Workshop | Web Security (03/11, 03/18) |
| National Chung Cheng University | Penetration Testing Workshop (03/19, 04/15, 04/30, 05/14, 05/28) |
| Yun-Chia Security Experience Camp | Web Security and Introduction to Security (03/26) |
| Central Taiwan High School IT Joint Conference (SCAICT) | Web (In)Security (04/09) |
| Monospace Coworking x ChuangKe Info | Penetration Testing (04/13) |
| Providence University, Cloud Walker R&D Base | Advanced Penetration Testing (05/07) |
| Monospace Coworking x ChuangKe Info | Web Essentials and Vulnerability Scanning (05/17) |
| Fu Jen Catholic University | Introduction to Security x Web Security (05/20) |
| Providence University, Cloud Walker R&D Base | Secure Development Lifecycle (SSDLC) (05/21) |
| Fu Jen Catholic University | Web Security (05/27) |
| Tunghai University Hacker Club | Penetration Testing Course (05/29) |
| Fu Jen Catholic University, NISRA | How to Build Your Own Vulnerable Environment (05/31) |
| NPUST Penghu Security Experience Camp | Web Security (07/04) |
| HITCON | Hey! Turns Out This Website Has a Hole (08/19) |
| AIS3 Junior | Web Security (08/23) |
| Organization | Topic |
|---|---|
| Central Police University & New Taipei City Police Department | Training - Web Security |
| MOE Talent Cultivation Program - National Dong Hwa University | Web Security |
| National Kaohsiung University of Science and Technology | Hacker Intrusion Techniques - ATT&CK |
| AIS3 Club (South) | Web Security (06/12) |
| SCIST | Linux Hands-On (08/15) |
| SCIST | Web Security Hands-On (08/21) |
| SITCON Students' Information Technology Conference | The Web Security Navigation Path (09/04) |
| AIS3 Club Security Club Officer Training | Skills and Curriculum Planning for Running a Security Club (09/18) |
| Information Security Research Club, NTUST | Introduction to Security (09/30) |
| Information Security Research Club, NTUST | Linux & Web Basic (10/07) |
| Information Security Research Club, NTUST | Web Security Basic (10/14) |
| Information Security Research Club, NTUST | SQL Injection (10/21) |
| SCIST | Web Security Basic (10/30) |
| HackerSir Officer Training | HTTP & Networking Fundamentals (11/06) |
| SCIST | Web Security Advanced (11/13) |
| HackerSir Officer Training | SQL Injection & Cross Site Scripting (11/20) |
| HackerSir Officer Training | Remote Code Execution (12/11) |
| Providence University | Penetration Testing (12/18) |
| Feng Chia University | IoT Vulnerability Discovery Workshop (12/25) |
| Information Security Research Club, NTUST | Remote Code Execution (12/30) |
| Organization | Topic |
|---|---|
| Security Club Officer Technical Workshop @ Fu Jen Catholic University | Penetration Testing Process and Practice |
| NCKU College of Digital Innovation Experimental Program | Information Security in Practice |
| AIS3 Summer Security Program | Distinguished Alumni Talk - Walking the Security Path |
| NTHU Security Study Group | Web Security |
| Investigation Bureau Security Investigation Professional Training | Penetration Testing in Practice |
| Feng Chia University Information Security Awareness Week | Which Big Fish Did I Catch Tonight? Social Engineering Principles and Real-World Cases |
| Organization | Topic |
|---|---|
| TDOH Central Taiwan Meetup | Penetration Testing Experience Sharing & Integrating Security Resources and the Journey |
| SITCON Students' Information Technology Conference | Hackers, Clubs, and the Grand Collection of Info Magic Learning |
| Universal Global Technology | Hacker Intrusion Cases and Prevention & Vulnerability Scanning and Penetration Testing |
| Mini-SOC Information Security Workshop | Network Security Overview |
| National Defense University Management College Recruit Training | Penetration Testing and App Assessment, CTF Introduction and Tools |
| Feng Chia University Information Security Awareness Week | Is Your Privacy Worth Anything? |
| Organization | Topic |
|---|---|
| Feng Chia University Secure Programming | Information Security in Practice |
| Organization | Topic |
|---|---|
| TDOH conf Hacker Dungeon | App Assessment Experience Sharing |
Awards & Honors
21 achievements
2025
2023
iThome Ironman Contest, Video Track, Honorable Mention - Security Vtuber Yuya Fei Reads the News With You to Learn Security
National Information and Communication Security Taskforce Technology Service Center (NICST), Cyber Security Golden Shield Award - Emerging Talent Award
2022
National Information and Communication Security Taskforce Technology Service Center (NICST), Cyber Security Golden Shield Award - Emerging Talent Award
2021
iThome Ironman Contest, Security Track, Honorable Mention - The Security Path: Systematically Learning Penetration Testing
National Information and Communication Security Taskforce Technology Service Center (NICST), Cyber Security Golden Shield Award - Emerging Talent Award
2020
iThome Ironman Contest, Security Track, Honorable Mention - The Security Path: Learning Information Security by Building Your Own Vulnerable Environment
HITCON X BALSN Security Classic Match, Qualification - Team Han Bing Black Bear
National Chung-Shan Institute of Science and Technology, Aegis Cup Capture the Flag - Finalist
IDB X HITCON BBC Vulnerability Discovery Contest, Connected Devices Track Champion
IoT Sandbox Smart IoT Security Contest - Finalist
2019
Summer Security Forensics Camp, Malware Locating & Hunting Practical Training and Competition 1st Place
6th NTHU Startup Day, Blockchain Track - Platform Award
Industrial Development Bureau, MOEA, Mobile App Assessment Tool Evaluation - 2nd Place
T-Cat Cup National Security Fundamentals Practical Skills Contest, University Division - 2nd Place
2018
Industrial Development Bureau, MOEA, App Hackathon - 3rd Place
AIS3 Summer Security Program, Final CTF 1st Place (Central Region)
2017
SECCON CTF for Girls (Japan) - 2nd Place
National Cyber Offense & Defense Exercises
2019 Executive Yuan National Cyber Security Offense & Defense Exercise (Attacker)
2018 Executive Yuan National Cyber Security Offense & Defense Exercise (Attacker)
2017 Executive Yuan National Cyber Security Offense & Defense Exercise (Attacker)