profile picture

Jung Hyun Kim

Ph.D. candidate at SoftSec Lab, KAIST

Education

Ph.D. in Information Security

KAIST
Sep. 2023 - Present

M.S. in Information Security

KAIST
Sep. 2021 - Sep. 2023

B.S. in Computer Science

Kyung Hee University
Mar. 2015 - Aug. 2021

Languages

  • Korean (Native)
  • English
  • Japanese

Interests

  • Program analysis
  • Type theory
  • ROM hacking
  • Recompilation
  • Server emulation
  • Machine learning

About Me

I’m a white-hat hacker who is interested in Binary Analysis. Binary analysis (or, program analysis in a broader sense) is not just for hacking. It is the pure willingness to understand how programs behave. I’m dreaming of the world where all of the classic game binaries get fully analyzed so that everyone easily enjoys ROM hacking (Link). I wanna be the Master Ball, which can absorb knowledges nearby.

Experiences

Research Intern (Undergraduate Intern)

Jan. 2021 - Aug. 2021
SoftSec Lab, KAIST
  • Studied Binary Analysis.

Vulnerability Assessment Trainee

Jul. 2020 - Feb. 2021
Best of the Best 9th, KITRI
  • Participated in Virtual Machine Bug Hunting Project (Link).
  • Participated in TOP 30 contest.

Project Intern (Undergraduate Intern)

Jul. 2019 - Feb. 2020
Smart Convergence Group, KIST Europe
  • Developed an end-to-end ML-based OCR framework for shipping labels.
  • A paper accepted to IPIU2020 (Poster Session).

Member

Mar. 2019 - Jun. 2019
Algorithm GURU 1st, Kyung Hee University
  • Studied Competitive Programming as a group.
  • Won a 3rd prize in KHU Algorithm Competition.

Soldier

Jan. 2017 - Oct. 2018
The 1st Logistic Support Command, Republic of Korea Army
  • Served military service.

Analyst

Jan. 2007 - Dec. 2010
Hanmaru: Amateur Game Hacking Team
  • Analyzed the structures of games, especially Nintendo console games.

Projects

RustyDO: Digimon Online Server Emulator

Sep. 2021 - Present

VirtualBoBs: Virtual Machine Bug Hunting

Oct. 2020 - Dec. 2020

Pokemon Ranger: Fan Translation

Sep. 2020 - Sep. 2021 (Suspended)

Pokemon Card Game: Fan Translation

Mar. 2019 - May. 2020

Coropata: Fan Translation

Jan. 2010 - Feb. 2010

Achievements

CVE-2021-2279

Apr. 2021
Oracle VirtualBox VRDP Heap-based Buffer Overflow Remote Code Execution

CVE-2021-2291

Apr. 2021
Oracle VirtualBox VGA Out-Of-Bounds Read Information Disclosure

NBB-1681

Feb. 2021
Naver Map Path Traversal Information Leakage

CVE-2021-2124

Jan. 2021
Oracle VirtualBox VGA Divide by Zero Denial-of-Service

NBB-1685

Jan. 2021
Naver Search Cross-Site Scripting Cookie Stealing