twseptian

twseptian

Perpetual Learner

whoami

About Me & Blog

Linkedin Badge GitHub twseptian GitHub stars GitLab Credly Gmail Badge

I am a Researcher at Universitas Sriwijaya, and I served as an Undergraduate Teaching Assistant and was actively involved in information security research. I was previously an M.Sc in Electrical Engineering and Computer Science (EECS) Department. National Taipei University of Technology. NTUT/Taipei Tech. 國立 臺北 大 科技, Taipei. Republic of China(RoC) Taiwan.

My interests span Information Security, Heteregenous Networks, Data Science, Machine Learning, Penetration Testing, and Capture The Flag(CTF).

My GitHub Stats


twseptian's GitHub Stats

Projects - Internet of Things (IoT) datasets

Dataset DOI
TCP FIN flood and zbassocflood Dataset DOI
Ping Flood Attack Pattern Recognition on Internet of Things Network Dataset DOI
UDP Flood Attack Pattern on Internet of Things Network Dataset DOI
Constrained Application Protocol Internet of Things Protocol Dataset DOI
Message Queue Telemetry Transport Protocol on Internet of Thing Dataset DOI

Exploit-DB

Date Title Type Platform
30/12/2021 Hospitals Patient Records Management System 1.0 - Account TakeOver Webapps PHP
30/12/2021 Hospitals Patient Records Management System 1.0 - ‘id’ SQL Injection (Authenticated) Webapps PHP
05/01/2022 Online Veterinary Appointment System 1.0 - ‘Multiple’ SQL Injection Webapps PHP
07/01/2022 Online Railway Reservation System 1.0 - ‘id’ SQL Injection (Unauthenticated) Webapps PHP
12/06/2022 Old Age Home Management System 1.0 - SQLi Authentication Bypass Webapps PHP

Common Vulnerabilities and Exposures (CVE)

CVE Title
CVE-2021-24614 Book appointment Online < 1.39 - Authenticated Stored Cross-Site Scripting (XSS)
CVE-2021-24621 WP Courses LMS < 2.0.44 - Authenticated Stored XSS via Video Embed Code
CVE-2021-24622 WP Ticket < 5.10.4 - Admin+ Stored Cross-Site Scripting
CVE-2021-24623 WordPress Advanced Ticket System < 1.0.64 - Authenticated Stored Cross-Site Scripting (XSS)
CVE-2022-2395 weForms < 1.6.14 - Admin+ Stored Cross-Site Scripting

Disclaimer
 I write in this blog, especially the many technical aspects of information security, and some of the posts are using Bahasa Indonesia language. The author tries to provide some of the tutorials, writeups in the English Language. All the information provided on http://twseptian.github.io is for educational purposes only. The author does not take responsibility regarding some of the destruction caused from the attacker and if they say some of their action from this blog. For full description about disclaimer, please navigate to disclaimer