Skip to content
K

Vu Trong Quoc Khanh

Kyrux

~$ whoami cybersecurity researcher

# Philosophy

> I treat every CTF challenge as a learning opportunity — dissecting source code, bypassing filters, and chaining vulnerabilities into working exploits. This blog is my digital lab notebook: raw, technical, and reproducible.

> When I'm not hunting flags, I'm building offensive tooling, studying protocol internals (HTTP/2, gRPC, WebSockets), or reverse-engineering web frameworks for zero-day research.

/* mindset.ts */
export const mindset = "Think like an attacker, document like a scientist";
// compile with: curiosity + persistence

# Toolbox

Burp Suite

Web proxy & intercept

Caido

Modern web auditing

sqlmap

SQLi automation

ffuf

Web fuzzing engine

nuclei

Template-based scanning

Python

Exploit scripting

Docker

Lab environments

Neovim

Code editor

ParrotOS

Daily driver

# Presence

$ systemctl status kyrux.service

Active: running · Accepting security collaborations & CTF team-ups