Seokchan Yoon

Seokchan Yoon

Hi guys! I'm Seokchan Yoon (Channy), a security researcher working at Seoul, Korea.

Scanning ReDoS in Python Automatically

Scanning ReDoS in Python Automatically

Hi, this is Seokchan Yoon. I'm currently taking a compiler course at KyungHee University this semester. Despite the short duration, I've had the pleasure of delving into intriguing topics, ranging from Lexing and Parsing algorithms to Abstract Syntax Trees (AST), Intermediate Representations (IR), and basic compiler optimization techniques. It has

팀플은 좀 더 공격적일 필요가 있다.

팀플은 좀 더 공격적일 필요가 있다.

재학하는 4년 동안, 그리고 실무를 맡으면서 경험했었던 수많은 팀플들에서 굉장히 공통적인 특성을 발견했는데 바로 "사린다는 것". 상대방이 공격당한다고 느낄 것만 같아서, 그리고 그와 동시에 나에게도 그 공격이 돌아올까봐 겁나서 자신의 의견을 못 내고 쭈뼛쭈뼛 굴고야 마는것이다. 이게 뭐가 문제인지는 다들 한 번 쯤 경험해 봤을 것이다.회의 딱 시작해놓고 무슨

Kyung Hee University's SW Security Competition: From Concept to Reality

Kyung Hee University's SW Security Competition: From Concept to Reality

Introduction Hi, I'm Seokchan Yoon. It's been a long time that I'm posting an article on my new blog 😅 Last year, in 2022, I had the honor of organizing a security competition for the students at my university, Kyung Hee University in Korea. It was a unique experience that I

CVE-2023-23969: Potential denial-of-service via Accept-Language headers

CVE-2023-23969: Potential denial-of-service via Accept-Language headers

Overview Hi guys, this is Seokchan Yoon. The Django security vulnerability has released on February 1, 2023. Because I have big interest in Django, so I analyze this issue just in time. To see the detail for this issue, click the link below. Django security releases issued: 4.1.6,

Project: Chrome Dino Game with Body Gesture

Project: Chrome Dino Game with Body Gesture

Overview Hi guys. This is Seokchan Yoon. Have you ever played Dino Game which can play on your Chrome browser when you are off-line? This game is so popular for its simplicity and enjoyment. I remember that I played this a lot with my friends when I was in high

Songs to recommend, Jan of 2023

Songs to recommend, Jan of 2023

Implementing Logging for Signing in, at django `graphene_jwt`

Implementing Logging for Signing in, at django `graphene_jwt`

개요 2020년에 진행했던 회사 프로젝트 중에 Django와 GraphQL을 사용한 프로젝트가 있었다. 사용자의 이용 기록을 저장해야 할 필요가 있던 프로젝트라 사용자가 로그인하는 것을 포함해서 행위를 기록하는 기능을 추가해야했다. 근데 누군가 만들어 둔 패키지에는 로깅 기능을 별도로 추가할 수 있는 기능은 없었고, 이것을 어떻게 해결했는지 기록하는 글이다. 본문 빠르게 개발할 필요가 있던