terminal
$ whoami
Võ Trọng Đức
$ cat role.txt
Security Engineer | Automation Specialist
$ echo $STATUS
Available for opportunities
Open to Work

Security · Full-Stack · AI · CTF

Võ Trọng Đức

Security Engineer | Automation Specialist

Building secure systems and automating complex workflows. Passionate about threat detection, algo-trading, and CTF challenges.

View Projects CTF Write-ups

About Me

Security-focused engineer with a passion for building automated solutions and tackling complex cybersecurity challenges. Currently pursuing Information Assurance at FPT University while working on real-world security projects.

Experienced in SOC operations, network intrusion detection, and developing automation tools. Active CTF competitor with expertise in forensics, reverse engineering, and web exploitation.

Ho Chi Minh City FPT University votrongduc0811@gmail.com
10+
Projects
10+
CTF Write-ups
3.2
GPA
8+
Certifications

Technical Arsenal

Security & Defense

Suricata ELK Stack Wireshark Volatility IDA Pro MITRE ATT&CK YARA Rules SOC Operations

Development

Python TypeScript JavaScript Next.js / React FastAPI Bash SQL C/C++

AI / Machine Learning

Scikit-learn XGBoost Pandas NumPy Feature Engineering

Infrastructure & Tools

Docker PostgreSQL Redis Cloudflare Vercel Prisma / Drizzle Linux Git Telegram API Selenium

Engineering Projects

Click on a card to view detailed information

Security · AI

CyberPulse

Real-time cybersecurity intelligence platform aggregating 32+ trusted sources. AI-powered pipeline (Anthropic Claude) automates CVE enrichment with NVD/CISA/EPSS data, generates bilingual EN/VI threat reports, and delivers daily newsletters — all on a fully Dockerized async stack.

Python · FastAPI · Celery Next.js 14 Claude AI PostgreSQL · Redis Docker
32+
Trusted Sources
EN/VI
AI Threat Reports
Security

SentinelSOC

Enterprise-grade SOC analyst platform: 10 MITRE ATT&CK-mapped detection rules, 6 IR playbooks, forensic analysis tools, and 90+ analyst training scenarios — with real-time WebSocket alerting and one-command Docker deploy.

React 18 · TypeScript FastAPI MITRE ATT&CK WebSocket
10
ATT&CK Rules
90+
Training Scenarios
Security

Hybrid NIDS

An advanced hybrid NIDS combining Suricata signature-based detection with Machine Learning anomaly detection. Trained on CICIDS2017 with XGBoost achieving 99.46% accuracy. Features 8-step closed-loop detection, behavioral analysis, and real-time Telegram alerting.

ELK Stack Machine Learning MITRE ATT&CK Python
99,46%
Detection Accuracy
< 2s
Response Time
Intelligence

XFEED

Real-time X/Twitter intelligence platform monitoring financial influencers, market news, and economic events. Production-grade anti-detection engine with zero-auth public REST API.

Python curl_cffi GraphQL REST API
OSINT

InsightHive

Social media intelligence platform for collecting, analyzing, and visualizing data from Facebook & TikTok at scale. Features automated data pipelines, trend analysis, and interactive dashboards.

Python Selenium Data Analysis OSINT
2
Platforms
Real-time
Analysis
Malware Research

Snake Game Keylogger

Proof-of-concept malware analysis lab simulating a full attack lifecycle: phishing delivery, credential harvesting, persistence, and C2 exfiltration via Telegram.

MITRE ATT&CK Python Credential Theft C2
5
ATT&CK Techniques
Full
Kill Chain
Full-Stack · Production

HIEN ERP

Production ERP for Hiên Concept & Củi Lũ Concept ceramic workshops (HCMC). Manages bookings, production workflow, shipping, and revenue — on Cloudflare Pages + D1 with 5-role RBAC.

Next.js 16 Drizzle · D1 Cloudflare TypeScript
2
Workshop Brands
Edge
DB at Edge
Full-Stack · SaaS

Xperise BD CRM

Internal CRM replacing 426-contact Excel sheets for Xperise's BD team. Turborepo monorepo (Next.js + Fastify), 7-stage deal pipeline, 4-role RBAC, BullMQ email campaign queue, and Apollo.io enrichment.

Turborepo Next.js · Fastify Neon PostgreSQL BullMQ · Redis
426+
Contacts Migrated
4
BD Staff Roles
Full-Stack

Personal Finance

Multi-user finance platform with 60+ categories, multi-currency live exchange rates, budget alerts, and recurring transaction automation. Bilingual VI/EN, PDF + Excel export. Free-tier deploy on Vercel + Supabase.

Next.js · Prisma Supabase shadcn/ui Recharts
60+
Default Categories
VI/EN
Bilingual
AI · Automation

Marketing Automation

Server-side image composition engine for multinational marketing campaigns. Processes batch template rendering via Sharp, integrates AI content generation (Vercel AI SDK v6), and automates campaign scheduling through configurable async concurrency pipelines — built for a live corporate client.

Next.js 15 Sharp Vercel AI SDK v6 TypeScript
Automation

Prospire Algo-Trading

High-frequency cryptocurrency trading engine with custom signal algorithms, real-time market data pipelines, and automated trade execution across multiple exchanges.

Python WebSocket Async I/O
$100k
/week volume

Financial Telegram Bot & Data Pipeline

Production Telegram bot serving real-time financial statements for 1,600+ Vietnamese listed companies. Built with producer-consumer architecture and async web scraping for high-throughput data delivery to investors.

Telegram API Producer-Consumer Selenium BeautifulSoup

CTF Vault

Click on a card to view detailed information

Forensic Hard

Gimme Your Point

SharePoint CVE-2025-49704 exploitation chain: deserialization RCE to Chrome credential theft via IDA reverse engineering

Read More VCSPassport2025
Forensic Medium

FOR2 - ICMP Backdoor

Covert C2 communication via ICMP protocol with command execution and data exfiltration through ping packets

Read More VCSPassport2024
Reverse Medium

RE02 - Excel Macro

Obfuscated XLM 4.0 macro reverse engineering with olevba deobfuscation and cross-cell string reconstruction

Read More VCSPassport2024
Reverse Hard

EzLogic

Hardware logic gate analysis with Verilog testbench modification and position-based brute-force decryption

Read More 0CTF 2024
Forensic Medium

Easy Forensics

Windows memory dump analysis with Volatility to identify fileless malware persistence via Registry Run keys

Read More ASICS 2024
Forensic Easy

Known Unknowns

Audio steganography via spectrogram analysis using Sonic Visualiser to reveal frequency-hidden text

Read More UWSP 2024
Forensic Hard

tet-riffic!

USB HID keystroke extraction from PCAP driving a Tetris game that renders a QR code containing the flag

Read More niteCTF
Forensic Easy

St3g0

Least Significant Bit steganography extraction from PNG using zsteg bit-plane analysis

Read More picoCTF
Forensic Easy

Verify

SHA-256 file integrity verification to identify the correct file among thousands of decoys

Read More picoCTF
Forensic Medium

m00nwalk

Slow Scan Television (SSTV) signal decoding from audio to reconstruct Apollo-era transmitted images

Read More picoCTF

Experience

Viettel IDC
Jul - Oct 2025

Security Engineer Intern (SOC)

SOC operations, threat hunting, and developing automation tools for security monitoring using ELK Stack.
Prospire
May 2025 - Present

Co-Founder & Founding Engineer

Building automated crypto trading systems and developing high-frequency trading algorithms with real-time market data processing.
HPT Vietnam Corporation
Dec 2023 - Apr 2024

Security Training Program

Intensive security training covering penetration testing, incident response, and security analysis methodologies.

Certifications

Partner Cloud Security

Cloud Security

Cisco

CyberOps Associate

Security Operations

Cisco

On-Job Training

Security Training

HPT Vietnam Corporation

Introduction to Networks

CCNAv7

Cisco

Switching, Routing, Wireless

CCNA

Cisco

Honorable Student

Fall 2023

FPT University

Honorable Student

Fall 2024

FPT University

Honorable Student

Spring 2025

FPT University

Get in Touch

Let's Connect

Open to security engineering roles, research collaborations, and CTF team invitations. Feel free to reach out.

Email votrongduc0811@gmail.com
GitHub Matth3wV0
LinkedIn votrongduc

Ready to Collaborate?

Whether it's securing infrastructure, building automation pipelines, or competing in CTFs - I'm always up for a challenge.

Send a Message