Hey, I’m Ngô Thiên An or you can call me ancorn_ 👋

OSWE-certified Penetration Testing Expert, Security Researcher, and Bug Bounty Hunter chilling in Da Nang, Vietnam.

“In breaking things, we learn how they work.” — my mindset in the wild world of cyber

What I Do

• Penetration Tester @ VNPT-VCI
• Security Researcher @ Synack Red Team
• Software Engineer @ Chative

Certs & Badges

• OffSec Web Expert (OSWE)
• Google Project Management

Wins & Brags

• Synack - Acropolis
• Apple - Hall Of Fame
• Patchstack - Wordpress Bug Bounty Program
• Wordfence - Wordpress Bug Bounty Program

My CVEs:

• CVE-2024-32511 (9.8)
• CVE-2024-24842 (9.8)
• CVE-2024-31237 (9.1)
• 240 CVE+

News & Posts

• VNPT - Nói về Ngô Thiên An
• FPT University - Nam sinh ĐH FPT kiếm vài nghìn USD mỗi tháng từ những “cuộc săn” lỗ hổng bảo mật
• CafeF - Nam sinh ĐH FPT kiếm vài nghìn USD mỗi tháng từ những “cuộc săn” lỗ hổng bảo mật
• TheAnh28 - Ngô Thiên An
• Chative - Better App Security
• Chative - App Security

My hobbies:

• 📈 Exploring Economics, Financial Markets, and Real Estate.
• 🈯 Learning basic Chinese.
• 🍈 Enjoying Durian (the ultimate fruit!).
• 🤖 Tinkering with AI agents and LLMs.

I learn by finding problems and breaking them — that’s why I love cybersecurity. This blog? My playground for pentest tips, bug bounty stories, and random cyber rants.

Let’s connect: X (Twitter) | LinkedIn