Donghyeon Jeong
Cyber Security Researcher
Seoul, KR
About
Security researcher focused on offensive security and red teaming. I research security vulnerabilities and contribute to their remediation, and I'm keenly interested in building tools for vulnerability analysis as well as in bug bounty work. I'm also actively researching AI technologies to enable AI-driven vulnerability assessment.
Experience
ROKA - GOC/GOC
Jan 2025 – July 2026Cyber Operations Solider · Yongin, KR
- Conducted security vulnerability assessments of [REDACTED] web services
- Built and operated a phishing email (social engineering) training system
- Performed security vulnerability assessments and penetration testing of [REDACTED] IoT devices and network printers
- Responsible for investigating and analyzing real-world malware infection samples
AUTOCRYPT
June 2021 – Dec 2024Security Researcher / Redteam · Seoul, KR
Vehicle Penetration testing
- Conducted penetration testing of LG Electronics infotainment systems (Jaguar Land Rover, Volkswagen)
- Performed penetration testing of LG Electronics controllers (V**, T***)
- Conducted penetration testing of LG Electronics & Mercedes-Benz BR*** cluster (instrument panel) controllers
- Conducted penetration testing of ERAE EMS vehicle steering controllers
- Verified diagnostic communication security vulnerabilities of HYUNDAI MOBIS ILCU controllers
- Performed penetration testing of HL KLEMOVE ADAS DRV controllers and supported European cybersecurity certification audits (UNECE)
- Conducted penetration testing of GIT vehicle diagnostic tool software (Windows based)
KATRI Vehicle Integrated Security Testing Tool Development
- Implemented assessment functionality for known security vulnerabilities across major automotive communication protocols, including CAN, Automotive Ethernet, Bluetooth, and RF (NFC), as well as for vulnerabilities arising during the communication process
Security Vulnerability Research and Presentations
- Conducted research on performing USB fuzzing against production vehicles; presented at the DEFCON conference
- Participated in the 2021 Cybersecurity Challenge, Automotive Hacking & Defense category (vulnerability research and exploit development; assisted in implementing an IDS intrusion detection system)
Vulnerability Disclosure
Out-of-bounds (OOB) write vulnerability in the dnsmasq
May 2026dnsmasq <= 2.9.2rel2
Out-of-bounds (OOB) write vulnerability in the dnsmasq
May 2026dnsmasq <= 2.9.2rel2
Denial of Service in Chevrolet Vehicle Infortainment System
Aug 2023Vehicle Infortainment System Version: 2021.03.26(build)
Denial of Service in Renault Vehicle Infortainment System
Aug 2023Vehicle Infortainment System Version: 283C35202R/283C35519R
Heap buffer overflow in xbmc
Feb 2023Software Version: 19.5
Talks
DEFCON 31, Car Hacking Village
▶ WatchCTF Awards
Vicone x BlockHarbor Automotive CTF Finals
Oct 20243rd placeTeamJJJJJ
BlockHarbor Automotive CTF Season 1
Sep ~ Oct 20239rd placeIndividualdhjisgod
Cybersecurity Challenge (Automotive Hacking & Defense)
Jun ~ Nov 20211st placeTeamAUTOCRYPT
The 2nd KOSPO Web Service Security Competition
Sep, 2021Honorable MentionTeam고점에사람있어요
The 3rd Y-CTF Vulnerability Analaysis & Penetration Testing Competition
Nov 20181st placeTeam김봉혁의 빠루교실
Education
Best of the Best 9th, KITRI
2020.07 ~ 2021.03Security Development Track
Yeungnam University College
2018 - 2022Cybersecurity department
Skills
Security
- Red Teaming
- Penetration Testing
- Vulnerability Research
Languages & Tools
- Python
- C/C++
- PHP
- Javascript
- Next.JS
- AWS
- Docker
- GIT
- AI