About FEI-FEI WU (FEEI)
君不见,黄河之水天上来,奔流到海不复回。
君不见,床头明镜悲白发,朝如青云暮成雪。
人生得意须尽欢,莫使金樽空对月。
天生吾徒有俊才,千金散尽还复来。
Hi, I’m Fei-Fei Wu (吴飞飞), aka Feei, a cybersecurity researcher based in Hangzhou, China. I deeply love my work and the city.
My hobby and my job happen to be the same—cybersecurity. My ideal is to make some positive changes in the world, and my dream is to travel around the world.
Cybersecurity
I’ve been interested in Hackers since childhood because they can give an ordinary person superpowers, just like Elliot in Mr. Robot and Neo in The Matrix. Read more about my journey in cybersecurity!
Annual/Monthly Reviews
Invest all my time, energy, and money in my long-term vision, focus on doing difficult but right things, keep track and document my transformation, and continuously refine my insights and strategies.
More
If you’d like to learn more about me, you can find additional details about my experiences in my article, “Stand out in the Sea of Resumes“.
I’m happy to discuss anything related to my written content with you. Emails allow for deep thinking and more focused discussions compared to instant messaging tools, so don’t add my WeChat account, just email me feei#feei.cn!
Publications
《网络安全面试指南》
多年来筛选了数以千计的简历,为什么很多人连面试机会都没有?参与了数以百计应聘者的面试,为何如此多的人没有通过最终面试?在面试过程中,能力固然重要,但我也见过许多能力不亚于已经入职同事的人却未能成功应聘。那么,如何才能在面试中顺利通过呢?
本指南旨在为网络信息安全领域从业者提供一份全面的面试指南。我将从行业、企业和从业者的角度来介绍当前情况,分享面试和招聘经验。指南将围绕各个细分安全领域的体系、实用且高质量的题库和思路提示展开,以便你能够更加全面系统地理解和吸收各种经验。
《金融级IT架构:数字银行的云原生架构解密》
网商银行技术团队出品
《安全平行切面:数字数代的原生安全架构》
蚂蚁集团安全团队出品
《数字银行可信纵深防御》
网商银行安全团队出品
《数字银行安全体系构建》
网商银行安全团队出品
About FEEI.CN
About FEEI.CN’s Cybersecurity
| Layer | Threat | Protective Measures |
|---|---|---|
| Network | DDoS/CC | Set DNS record to gov site |
| MITM | HTTPS(SSLLabs Test Score A+); HSTS; | |
| Application | XSS | Security Header(CSP/X-XSS-Protection) |
| iFrame | Security Header(X-Frame-Options) | |
| MIME Sniffing | Security Header(X-Content-Type-Options) | |
| Fronted Backdoor | Security Header(Permissions-Policy) | |
| SQLi | Change Database Prefix; No sensitive data; | |
| Brute-force login accound | Custom username; Strong password; | |
| Sensitive data leakge | DEBUG False; Disable PHP Error; Hidden PHP/Wordpress/Nginx Version; Automatic IP Blocking Vulnerability Detection | |
| Trojan/Mining/Webshell | DISALLOW_FILE_EDIT; Separate user group for static/php files, read-only permissions, no write access except in upload directory; | |
| 0day | Separate user WP-CLI mode for automatic updates of Core/Plugin/Theme to latest version; inotify www directory; Automatic IP Blocking When Web attack; | |
| Ransomware | Daily Backup of files and database to remote server; Daily backup of ECS Image; | |
| Server | Service Brute-force/Vulnerability | Only 80/443 ports opened; Automatic IP Blocking When Port Scan; Private IP Login with Key; Outbound Internet Access Restriction; |
About FEEI.CN’s Speed
| Layer | Items | Company | Config/Version | Result |
|---|---|---|---|---|
| Network | DNS | DNSPod | <60ms | |
| VPS | Aliyun | 4M, Hangzhou(South) + Beijing(North) | <15ms | |
| CDN | – | – | – | |
| Base Application | Blog Software | WordPress | Automatic Update | |
| Web Server | Nginx | 1.20.1+HTTP2 | ||
| Program Language | PHP | 8.0.30+OPCache+FastCGI Cache | ||
| Software Application | Theme | Typology | Text based with no image required | |
| Text | Lighthouse | / | ||
| Compression/Text | Minify | / | ||
| Compression/Image | Webp | / | ||
| Compression/Transmission | GZip | All file type | ||
| Async/Text | async | Statis files | ||
| Async/Media | Lazy Load | / | ||
| Cache/Browser | HTTP Cache | no-cache | ||
| Cache/Application | FILE Cache | Page/Post | ||
| Cache/Database | Redis | 3.2.12 | ||
| Other/URL Redirect | / | 0 | ||
| Other/Other domains resources | / | 0 | ||
| Speed Test | PageSpeed Insights(Lighthouse) | Performance Score | 100 | |
| Pingdom | Performance Score | 94 |
歌单: 周杰伦
いつも何度でも - 宗次郎
愛にできることはまだあるかい - RADWIMPS
夢灯籠 - RADWIMPS
三葉のテーマ - RADWIMPS
笔记 - 周笔畅
如愿 - 王菲
体面 - 于文文
海底 - 凤凰传奇
童年 - 张艾嘉
东西 - 林俊呈
卜卦 - 崔子格
后来 - 刘若英
黄昏 - 周传雄
房间 - 刘瑞琦
青花 - 周传雄
勇气 - 梁静茹
宁夏 - 梁静茹
泡沫 - 邓紫棋
城府 - 许嵩
素颜 - 许嵩
幻听 - 许嵩
花海 - 周杰伦
夜曲 - 周杰伦
退后 - 周杰伦
外婆 - 周杰伦
逍遥叹 - 胡歌
起风了 - 买辣椒也用券
春庭雪 - 等什么君
七里香 - 周杰伦
猜不透 - 丁当
不怪她 - 马思唯
一笑江湖 - 临渊不羡鱼
忽然之间 - 莫文蔚
千里之外 - 周杰伦
我们的歌 - 王力宏
无名的人 - 孙楠
个人简介 - 安全着陆
此生不换 - 青鸟飞鱼
有何不可 - 许嵩
孤单心事 - 蓝又时
铁血丹心 - 罗文,甄妮
红色石头 - 李智楠
我欲乘风 - 安全着落
回到过去 - 周杰伦
回到未来 - Double Zhuo & Tizzy T
电台情歌 - 莫文蔚
清明雨上 - 许嵩
需要人陪 - 王力宏
灰色头像 - 许嵩
纸短情长 - 烟把儿
一生所爱 - 卢冠廷&莫文蔚
平凡之路 - 后会无期
漫步人生路 - 邓丽君
盛夏的果实 - 莫文蔚
小手拉大手 - 梁静茹
每个人都会 - 方大同
听妈妈的话 - 周杰伦
红色高跟鞋 - 蔡健雅
多余的解释 - 许嵩
最好的安排 - 曲婉婷
爱就一个字 - 张信哲
可惜不是你 - 梁静茹
会呼吸的痛 - 梁静茹
玫瑰花的葬礼 - 许嵩
有没有人告诉你 - 陈楚生
给我一首歌的时间 - 周杰伦
最远的你是我最近的爱 - 车继铃
总有一天你会在我身边 - 棱境
APT - ROSÉ & Bruno Mars
Time - 小青龙 & 辉子
August - Intelligency
Don't matter - Akon
Free Loop - Daniel Powter
Jar of Love - 曲婉婷
Plain Jane - A$AP Ferg&Nicki Minaj
Thank You - Dido
SeeYouAgain - Wiz Khalifa&Charlie Puth
Rage Your Dream - m.o.v.e
Welcome to New York - Taylor Swift