hi! im just a kid... a high school kid. sometimes i like to program and things, but i don't really know. unfortunately i am also a nerd.
here are some less terrible projects i have worked on.
luvmarkdown — a web problem for tjctf 2016. i think only three teams solved it during the competition! it's kind of a convoluted problem, especially since the code looks pretty secure. (thanks, content security policy!) but of course, csp can't be a silver bullet. the exploit involves finding a subtle stored xss vulnerability, then using it to conduct a session fixation attack.
to set it up on your own computer, install node and phantomjs, making
sure that both are in the path. then run node setup.js
and node src/app.js.
thyroxine — an android client for tjhsst intranet. i built this over a series of saturdays around winter 2014 to spring 2015, and i've probably put more effort into it than any other project i've done. (coincidentally iolite was being developed around the same time, but that actually gained some user traction!)
probably the most interesting thing that thyroxine can do is that it can synchronize data and store it offline. implementing that required a lot of mucking around with android sqlite and syncadapter and accountmanager and blagh. anyway i should probably update it to use ion instead of iodine sometime, but that will also take quite a bit of work.
fresh eats — a marketplace to sell homemade food. rohan suri and i built this during vthacks III (which took place from february 26 – 28, 2016). we won third place overall! the app doesn't exactly completely work yet, of course. it was built using the ionic framework, which uses angular.js, and firebase as a backend.
instant recall — an app that notifies you when food items you purchase are recalled. eric wang, joseph chen, and i built this during incubatedc 2016 (which took place from august 6 – 7, 2016), winning third place overall. the app lets you scan receipts to track what food products you purchase. then it cross-references those with data from the openfda api to determine whether any have been recalled. the app is built with hacky jquery.
unfortunately, the receipt scanning is currently rather poor (stuffing it through ocr and matching the resulting text) and the openfda api only seems to be updated once every few months, prohibiting truly instant recall notifications. we would also want to integrate with data from USDA, which also issues recalls.
if for some reason you want to, you can email the aforementioned nerd at [email goes here]. thanks and i hope you have a really great day!