Yoshinori Hayashi (@8ayac)

TwitterHackerOneGitHubBlogBugBounty.jpLinkedInWantedly

Work Experience

Part-time Security Engineer at Cybozu, Inc

Apr 11, 2018 - May 23, 2019
  • Did security testing and risk assessment
  • Operated Cybozu Bug Bounty Program

Part-time Security Engineer at Mitsui Bussan Secure Directions, Inc

Jul 2, 2019 - Mar 31, 2020
  • Did vulnerability testing of web applications

Education

Department of Information Security, Information Science College, Kanagawa

Apr 1, 2017 - Mar 31, 2021
  • Received Advanced Diploma(Applied Professional Postsecondary Course(Technology))
  • Reference:School information
  • Reference:Advanced Diploma (Japan)

Awards & Achievement

MBSD Cybersecurity Challenges 2017

Dec 13, 2017

2018 GitLab BugBounty Program

Jan 1, 2019

45th WorldSkills Competition in Kazan

Aug 27, 2019

2019 GitLab BugBounty Program

Jan 1, 2020

Other Activities

Burp Suite Japan User Group

Jan 1, 2019 - PRESENT
  • A user group of a local proxy tool "Burp Suite.
  • Organizing some events and supporting other management tasks.

ISCCTF 2020

Oct 24, 2020

CVEs

CVE-2018-0652

Aug 3, 2018
  • Found an Stored XSS on GROWI.
  • Reference:cve.mitre.org

CVE-2018-0653

Aug 3, 2018

CVE-2018-17454

Oct 1, 2018

CVE-2018-18640

Oct 29, 2018

CVE-2019-6785

Jan 31, 2019

CVE-2019-9220

Mar 4, 2019

CVE-2019-13010

Jul 3, 2019

Publications

DEFCON 27 OpenCTF 2019 参戦レポート

Oct 3, 2019
  • Published in HISYS Journal Vol.34.
  • Reference:HISYS Journal Vol.34

技能五輪国際大会(WorldSkills Kazan 2019)出場レポート

Oct 28, 2019

Presentations

Dec 13, 2017MBSD Cybersecurity Challenges 2017 最終審査会 発表スライド

MBSD Cybersecurity Challenges 2017 最終審査会 発表スライド

Dec 12, 2018MBSD Cybersecurity Challenges 2018 最終審査会 発表スライド

MBSD Cybersecurity Challenges 2018 最終審査会 発表スライド

Mar 11, 2019Free Bugs Campaign

Free Bugs Campaign