Skip to content
View a-tt-om's full-sized avatar
6 followers · 1 following

Achievements

Achievement: YOLOAchievement: Pull Shark

Achievements

Achievement: YOLOAchievement: Pull Shark

Highlights

Block or report a-tt-om

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
a-tt-om/README.md
TOAN THANG

> CTF / PENTEST / REDTEAM / RESEARCH _




> ORG
AppSec @ VinSOC
Web @ BKSec



> FOCUS
Web Security
Vuln Research
Pentest/RedTeam



> NETWORK
X
LinkedIn
Discord
Telegram
Portfolio

`> whoami`

Hi there, I'm Toàn Thắng (#attom).

I am currently navigating my third year as a Computer Science @ Hanoi University of Science and Technology.

My professional journey is deeply rooted in offensive security. I currently work in Application Security at VinSOC, and serve as proud member of BKSec - Head of Web Exploitation. I actively participate in CTF competitions with my teammates, it's a fantastic way for us to connect, have fun, and continuously learn from each other to elevate our skills.

My goal is to dive deep into vulnerability research and redteaming, figuring out how everything works under the hood, discovering new vulnerabilities and challenging myself.

Always happy to connect! Whether you want to discuss some cool stuffs or just say hi, my inbox is open.


👾 `> SYSTEM_LOG:` Unauthorized entity detected.
You are visitor to breach this mainframe.
Please do not drop my tables.

ID DATE PROJECT TYPE SEV ADVISORY REF
Updating... 14-06-2026 Echo Path Traversal 🟠 High [GHSA-vfp3-v2gw-7wfq] ---
Updating... 12-06-2026 Open edX Platform SSRF 🟡 Moderate [GHSA-fpf9-9rpr-jvrx] ---
CVE-2026-54281 08-06-2026 NestJS Incorrect Authorization 🟠 High [GHSA-6v32-fjc9-9qf6] ---
CVE-2026-48489 27-05-2026 Symfony Incorrect Authorization 🟠 High [GHSA-6h46-9jf5-q59x] [CVE-2026-48489]
CVE-2026-48120 22-05-2026 Kakoune Command Execution 🟠 High [GHSA-h99r-h8cp-vwcq] ---
CVE-2026-45077 21-05-2026 Symfony Insecure Deserialization 🟠 High [GHSA-m7v2-7gxm-vc2v] [CVE-2026-45077]





pacman-contribution-graph

[ EOF ]

Popular repositories Loading

  1. Analyze-CommonsCollections5-gadget-chain Analyze-CommonsCollections5-gadget-chain Public

    HTML 1

  2. CTFd-Docker-Plugin CTFd-Docker-Plugin Public

    Forked from phannhat17/CTFd-Docker-Plugin

    CTFd plugin allowing for individual Docker containers per team

    Python

  3. CTFd-SSO-plugin CTFd-SSO-plugin Public

    Forked from SoICT-BKSEC/CTFd-SSO-plugin

    Python

  4. treesnap-plus treesnap-plus Public

    HTML

  5. CS451-SocialNet-Project CS451-SocialNet-Project Public

    PHP

  6. CTFd CTFd Public

    Dockerfile