Security Engineer

Hi, I'm Ender Phan.

Passionate about offensive and defensive security. I build tools, break things on purpose, and write about what I learn. Blockchain CTF winner at DEFCON 2019.

Install Plugins See projects Read research

What I'm about

I graduated from Tallinn University of Technology with a focus on cybersecurity. By day I work on offensive security engagements at RNG Labs; by night I tinker on side projects: Chrome extensions, infrastructure tooling, blockchain CTFs, and the occasional research note.

This site is where I park the work and the notes. Browse the projects for things I've built, or the research for what I've been digging into.

Latest plugins

All plugins →

ANGI.DAY

A free web app to find the local restaurants, coffee shops in Saigon.

Updated May 26, 2026

MarkView

A markdown editor with live preview, mermaid diagrams, and an offline macOS app for taking notes.

Updated May 26, 2026

Latest research

All articles →

Stop Claude Code From Wrecking Your Server: A Practical Guide to settings.json Permissions

Protect your server from Claude

May 29, 2026

A Methodological Framework for the Statistical Assessment of Random Number Generators and the Verification of Return-to-Player in Online Gaming Software

Read the full article →

May 22, 2026

Claude Mythos Preview: Technical Methods for Vulnerability Discovery & Exploitation

Read the full article →

May 22, 2026

Claude Agent Skills - Best Practices Guide

Read the full article →

May 22, 2026