Hans · dev / sec

01

Who is Hans?

// DossierCyber Security undergrad. Builds systems, breaks them on purpose, repeats.

I build software that holds up under pressure, and break it on purpose when it shouldn't. Currently learning to do both faster.

I'm Hans Kartawinata, a Cyber Security undergrad at Universitas Bina Nusantara and a full-stack developer who treats "works on my machine" as a personal insult. Most of my week is spent as a Junior Lab Assistant at BINUS's Software Laboratory Centre, running hands-on sessions for Computer Networks, Computer Vision, and Mobile Hybrid Solutions, and writing the practical exam cases other students will eventually curse at.

The rest goes to PETIR Cyber Security, BINUS's competitive CTF team, and the Cyber Security Community, where I serve as R&D Activist designing challenges I hope at least one teammate finds annoying. Reverse engineering, cryptography, and forensics are the categories I keep coming back to.

I write Go for things that must not stop, Rust for things that must not fail, and Python for everything I'd rather not write twice. Open to internships, collaborations, and CTF teamups.

C / C++92
Python86
Linux87
Networking · Cisco84
Java84
RE · Crypto83
C#82
TypeScript / Vue77
Go / Backend75
Rust / Tauri74
Docker · gRPC70

02

Activity log.

// Roles & EducationWhere I show up most weeks. Click a row to expand, or just take my word for it.

TimeframeRoleOrg · NotesStatus

2025·08 → now Lab Asst Software Laboratory Centre · BINUS · Lab sessions, practical exam design & student mentoring Active

2025·05 → 2025·08 Apprentice PETIR Cyber Security · CTF · RE · Crypto · Forensics Completed

2025·02 → 2026·02 R&D Activist Cyber Security Community (CSC) · BINUS · Challenge designer Completed

2024 → now Undergrad B.Sc. Cyber Security · Universitas Bina Nusantara In Prog.

2026·05 Cert OPSWAT ICIP · Critical Infrastructure Protection Issued

2026·05 Cert Endpoint Security · Cisco Issued

2026·03 Cert Azure AI Fundamentals · Microsoft AZ-900 Issued

2026·02 Cert Networking Basics · Cisco Issued

03

Selected work.

// Lab + PersonalThings I built because the alternative was sleep.

Project_01// HOSHI

Hoshi. Social platform.

I built this to find out how far I could take a microservice setup on my own. It does posts, real-time chat, notifications and video calls, split across seven Go services that talk over gRPC behind a single REST gateway. State lives in Postgres and Redis, events go through RabbitMQ, media sits in MinIO, and Traefik routes everything. Calls run on Agora and a small Python service handles moderation.

hans@hoshi:~

$ docker compose ps --services gateway // REST + Swagger · :8080 auth-svc // JWT + sessions post-svc // timeline + media chat-svc // gRPC stream · WS bridge notify-svc // RabbitMQ fan-out call-svc // Agora signaling media-svc // MinIO + thumb pipeline ai-svc // FastAPI · summarization $ docker compose logs --tail=4 ai-svc INFO Loading model from sshleifer/distilbart-cnn-12-6 INFO Model loaded successfully INFO Connecting to Redis at redis-cache:6379 INFO Redis connection established successfully $ curl -s -X POST localhost:8000/summarize \ -H "Authorization: Bearer eyJhbGc..." \ -d '{"post_id":"a3f8c2d1-7e4b-4f9a-b1d6-2c5e8f3a9b7c"}' { "tldr": "Sunset hike at Rinjani was worth every step.", "original_length": 312, "summary_length": 46 } $ _

Vue 3GogRPCPythonDockerTraefikPostgreSQLRedisRabbitMQMinIO

Project_02// BIZ-SYS

Tauri desktop

A business desktop app I took from the first stakeholder interviews all the way to a working build. I modelled it out in Visual Paradigm first, then built it with a Rust backend and a SvelteKit frontend, wrapped in Tauri so the same code runs on Windows, macOS and Linux.

TauriSvelteKitRustTS

Project_03// RPG

3D Multiplayer RPG

A 3D RPG in Unity with dungeons that generate as you go, enemy AI, and the systems you'd expect: inventory, equipment, skills and NPCs. The multiplayer side runs on Photon PUN, so players share rooms, spawn in together and chat while they play.

UnityC#Photon PUN

Project_04// NET-SIM

Enterprise network

Four-site enterprise build in Cisco Packet Tracer. Tokyo HQ on Three-Tier, Osaka on Collapsed Core, Nagoya on Spine-Leaf, Yokohama as the DC. OSPF and EIGRP across all sites, VLAN/VTP, HSRP, STP load-balanced, VoIP, IoT fire monitoring in Nagoya, DHCP Snooping and Dynamic ARP Inspection on the edges.

tokyo-hq-core#

$ show ip ospf neighbor 10.0.12.2 FULL Gi0/1 // osaka-core 10.0.13.2 FULL Gi0/2 // nagoya-core 10.0.14.2 FULL Gi0/3 // yokohama-dc $ show standby brief Vlan10 Active local // HSRP group 10 Vlan20 Standby 10.10.20.2 // failover ready $ _

Cisco PTOSPFEIGRPHSRPVLAN/VTPVoIPIoT

Project_05// CLINT

clint — C/C++ linter

A standalone linter for C and C++ written in Rust. Catches uninitialised reads, unsafe stdlib calls, format string bugs, and file descriptor leaks. Single binary, zero runtime deps, fast enough to run on every save.

clint ./src

ERR main.c:14 uninit read ERR net.c:41 fd leak path VULN net.c:73 fmt-string WARN main.c:22 strcpy unsafe STYLE util.h:08 naming conv. 5 findings 18ms 4.2kloc scanned $ _

RustC / C++

04

The stack.

// InventoryThings I reach for without re-reading the docs.

// Languages

Go
TypeScript
Rust
Python
C / C++
C#
Java
Dart
SQL

// Frameworks

Vue 3
SvelteKit
Tauri
Flutter
Three.js
JavaFX
Unity
gRPC · REST

// Infra · Data

Docker
Traefik
PostgreSQL
Redis
RabbitMQ
MinIO
SQL Server
Linux

// Tools · Recon

Burp Suite
Cisco Packet Tracer
Postman
Visual Paradigm
Git
Figma
XAMPP

05

Open a ticket.

// ChannelAvailable for freelance builds. Remote preferred. Response within 24h.

Talk to Hans.

→ [email protected]

→ itsfm.net

→ github.com/itsFM-Codes

→ linkedin.com/in/hans-kartawinata

// Availability Available for freelance builds · remote · CTF teamups
Response time: usually < 24h on weekdays

PWNED.