About Vincent Yiu

Social Profiles
Twitter: @vysecurity​
LinkedIn: /in/vincent-yiu​
YouTube: /c/VincentYiu​
‌Vincent is a Director of Red Team Operations. Vincent manages services driven by the adversary mindset and practically executes and demonstrates the impact of security vulnerabilities and attack paths.
Wechat
Conference Speaking
​
I am always open to speaking about interesting topics at different conferences ranging from business audiences to pure technical audiences. Get in touch, and I'll try to submit for the CFP or consider the event!
2018 DragonCon, Hong Kong
Not recorded
2018 Fintech Security Conference, Hong kong
Not recorded
2018 SSC Security Conference, Xi'An, China
Not recorded
2018 Hack In The Box GSEC, Singapore
https://www.youtube.com/watch?v=w1fNGOKkeSg​
2017 Jingdong Annual Security Conference, Beijing, China
Not recorded
2017 Hack In the Box GSEC, Singapore
https://www.youtube.com/watch?v=vdFbqG1aDh8​
2017 SteelCon, United Kingdom
https://www.youtube.com/watch?v=SO5VLbLu9uE​
2017 BSides Manchester, United Kingdom
https://www.youtube.com/watch?v=-FQgWGktYtw​
2017 SnoopCon, United Kingdom Private, for British Telecommunications
2016 SnoopCon, United Kingdom Private, for British Telecommunications
Key Certifications
MEng Computer Science, University of Warwick
Offensive Security Certified Professional, Offensive Security
Offensive Security Certified Expert, Offensive Security
CREST Certified Infrastructure Tester, CREST
CREST Registered Tester, CREST
Certified Security Testing Associate, 7Safe
Courses Undertaken
RastaLabs
Penetration Testing with Kali Linux
Cracking the Perimeter
Web Application Hackers Handbook - Live Edition
Mobile Application Hackers Handbook - Live Edition
Advanced Threat Tactics - Videos
CSTA 3 day course that was held in Cambridge
Other
Reverse engineering since the age of 10
UK National Cyber Security Championship Masterclass Finalist 2015
Telegraph: UKs Largest Cyber Terror Attack Simulation on HMS Belfast
Independent: Cyber Security Challenge Hack into HMS Belfast and Blow up London Wired: A Cyber War is being staged in central London
BBC News UK: Computer terror simulation used to recruit 'cyber defenders'​
USBNinja - Bad USB charging cable projects for offensive operations and simulations:
BleepingComputer: USBHarpoo (Old Name) is a BadUSB Attack with a twist​
Responsible Disclosures
Riot Games, Xiaomi, General Motors, Adobe, Barclays, Iqiyi, VIPSHOP, Didichuxing, Alibaba, Airbus, FBI, US DoD, UK Gov via. NCSC, DigitalOcean, Vultr, ElasticSearch, Intel, China Mobile via. CNCERT.

Red Team

Red Team Tips

Last modified 1yr ago

Copy link

Contents

Responsible Disclosures