htrgouveahtrgouvea
19

Research

screenshot of Research
jekyll

My past public researches are archived here

GithubDemo

Overview

This product analysis focuses on a personal website developed by Heitor Gouvea. The website serves as a platform for sharing research notes, experiments, advisories, and analysis of advisories from other researchers. The website was developed using Jekyll and incorporates HTML5, CSS3 (with SASS), and JavaScript files. It includes various features related to vulnerability discovery, exploit development, and security analysis. The website also encourages contributions and suggestions from users.

Features

  • Vulnerability Discovery: The website showcases the author's research focus on vulnerability discovery in applications and services.
  • Exploit Development: The author enjoys bypassing modern defenses and exploring systems through exploit development.
  • Sharing Research Notes: The website serves as a platform for the author to share research notes, experiments, advisories, and analysis of advisories from other researchers.
  • CVE Analysis: The website provides analysis of specific Common Vulnerabilities and Exposures (CVE), such as CVE-2021-41773 (RCE & LFI on Apache HTTP Server) and CVE-2021-22204 (N-Day exploit RCE on Exiftool).
  • Github Actions Workflows: The website utilizes GitHub Actions workflows for various purposes, including deployment, security analysis using tools like Dependa bot (SCA), Semgrep (SAST), and OWASP ZAP (DAST).

Summary

The personal website developed by Heitor Gouvea serves as a platform for sharing research notes, experiments, advisories, and analysis related to vulnerability discovery, exploit development, and security analysis. The website is built using Jekyll and incorporates various technologies such as HTML5, CSS3 (with SASS), and JavaScript. It features analysis of specific CVEs, GitHub Actions workflows for deployment and security analysis, and encourages contributions from users. The installation guide provides step-by-step instructions for setting up the website locally. Overall, Heitor Gouvea's website offers valuable insights and resources for those interested in the field of cybersecurity.

jekyll
Jekyll

Jekyll is a static site generator written in Ruby that allows you to create simple, fast, and secure websites without the need for a database.

blog
Blog

Blog websites feature posts written by one or more authors, organized by categories and tags, with a section for comments and archives sorted by date or topic. Additional features may include search bar, social media sharing, subscription or RSS feed, about and contact pages, and visual content.