Hey there, thanks for visiting. I’m Thao! I started out my career as a software engineer turned security engineer. I love to help build/automate security tools to improve visibility and detection. I also enjoy learning pen-test and malware reverse engineering in my free time.

To become a better blue teamer, I put in a lot of effort to learn the offensive side (+ performing it on test hosts in my lab environment to see what alerts and logs it will generate) to help me to think about how to write and implement better detections. So you’ll see a lot of offensive as well as some detection posts. If you have any cool tips and trick, feel free to send it my way!

I started my security journey a few years ago, and is starting to have an alphabet soup of certs (currently GCFA, GPEN, GCIH, GCISP, GREM, GPYC, GCDA and working on OSCP soon!). They don’t mean much, but I definitely enjoyed the studying & learning process to get each of them.

My hobbies include traveling, watching the sunset, being by the water, hiking, and playing/listening to music. (Pretty typical, I know!)

My keybase: https://keybase.io/tnv0

Why do I blog?

I’m not quiet sure. One day at 2am, I spontaneously bought a domain and now I have to put it to use… :’) (Jk!) I am hoping to write a bit more about my learning journey as I progress in my career, and share the knowledge with other who might potentially be interested in this field. I’m also trying to learn how to write better. Writing isn’t one of my forte…hence I went into writing code ;)

What to expect

No expectations plz. This is just another blog on the internet!

… But I won’t disappoint you in offering some quality mind rambles and unpolished thoughts ;)

Current Goal

One of my current goal for this year and next is to contribute more to open source projects. Whether if it’s fixing a typo, adding new functionalities, helping with documentation, or code reviews - I just want to contribute more. Here is a list of projects I have reviewed/contributed/made a PR to:


  • Say hi:
hi [@] tv0.tech

For the record

All typos and opinions expressed here and on my social media profiles are solely mine and do not reflect those of my employer. Any retweets and mentions of products do not constitute endorsement of any position, product, or service.

All of my posts are for learning purposes only. Please do not utilize any knowledge here to scan/probe/hack into any systems that you do not have permission to.