Mayx is a highly motivated Network Engineering graduate with a strong foundation in full-stack development, cybersecurity, and DevOps. Recognized for discovering a Windows Sandbox vulnerability (CVE-2021-31208) and contributing to open-source projects, they excel in building robust systems, optimizing infrastructure, and solving complex technical challenges. With extensive hands-on experience in Linux administration, containerization, and web development, Mayx is poised to deliver innovative solutions and drive impactful results in a dynamic tech environment.
→
Bachelor
Network Engineering
Courses
Computer Networks
Operating Systems
Databases
Network Security
Python Programming
Awarded By
Various Open Source Projects
Contributed to multiple open-source projects, including 'zip-quine-generator' and 'coi-serviceworker', by submitting Pull Requests to enhance functionality and resolve issues.
Awarded By
Microsoft Security Response Center
Received official acknowledgment and thanks from Microsoft for discovering and reporting CVE-2021-31208, a local privilege escalation vulnerability in Windows Sandbox.
Awarded By
University Internal CTF
Achieved third place in the university's Capture The Flag competition as part of a team, demonstrating strong collaborative problem-solving and cybersecurity skills.
Awarded By
University Internal CTF
Secured 'First Blood' and 'Second Blood' distinctions in the university's Capture The Flag competition, indicating rapid and accurate vulnerability exploitation.
Awarded By
University Innovation Committee
Awarded for participation in an innovation competition for the 'Cloud Phone Concept Planning' project, showcasing innovative thinking and strategic planning abilities.
Published by
A University in Chengdu
Summary
Developed a comprehensive nucleic acid testing registration system utilizing the ThinkPHP5.1 framework, demonstrating proficiency in web development, database design, and system architecture for a real-world application.
Shell, PHP, JavaScript, Python, HTML/CSS, C, Java, Go.
Linux (CentOS, Ubuntu, Alpine), Nginx, Apache, MySQL, PHP-FPM, Hyper-V, ESXi, PVE, KVM, Docker, Koyeb, Cloudflare Workers, Internal Network Penetration, VPN, Proxy (SSH Tunnel, frp, wssocks).
Vulnerability Discovery, CTF Participation, CTF Question Design, Penetration Testing (Information Gathering, XSS, SQL Injection, File Upload Vulnerability Exploitation), Security Hardening (Firewall Configuration, SSL Certificate Management, CSP Policy, Origin Protection).
Static Blog Building (Jekyll), Theme Customization, PHP Development (Forum, Counter, Image Host, API Interfaces), JavaScript (jQuery, AJAX, Service Worker), Database Design (MySQL, SQLite).
Raspberry Pi Applications (FM Radio, Server, Linux System Porting), PCB Design (EasyEDA), Old Device Utilization (phone as server, old computer with Linux).
Principle Understanding, Knowledge Sharing (Blogging), Hands-on Prototyping.
Security Awareness, Operations Experience, System Stability, Data Backup.
Learning from Failure, Solution Optimization.
Forum Maintenance, Website Management.
→
Summary
Developed a lightweight BBS engine using Linux Shell, supporting both web and command-line access, demonstrating early-stage software development capabilities and long-term project commitment.
→
Summary
Developed an automated system for data backup and content distribution following a server data loss incident, showcasing expertise in system reliability and DevOps practices.
→
Summary
Created a Server-chan alternative using WeChat official account test numbers for template message pushing, demonstrating proficiency in API integration and high-volume messaging systems.
→
Summary
Contributed as a co-organizer and question designer for an internal CTF competition, demonstrating expertise in cybersecurity principles and challenge creation.
→
Summary
Discovered a local privilege escalation vulnerability within the Windows Sandbox file system mapping, leading to official recognition from Microsoft.
→
Summary
Developed a concept and proposal for a 'Cloud Phone' architecture, shifting computation to the cloud, showcasing strategic thinking and innovation.
→
Summary
Independently developed a PHP+MySQL-based blog click counter to replace a defunct third-party service, demonstrating practical problem-solving and full-stack development skills.