shusei tomonaga

Systems Analyst at JPCERT/CC

Tokyo, Japan
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
shusei tomonaga is a Tokyo-based systems analyst with 11 years of experience specializing in malware analysis and forensic investigation. He blends hands-on back-end development with security-focused incident analysis, notably contributing core functionality and performance improvements to the well-regarded LogonTracer project for visualizing malicious Windows logon activity. Comfortable with web stacks and data stores like Elasticsearch, he has a track record of fixing tricky parsing and UI issues under large-data conditions. Known for digging into root causes, he pairs practical engineering skills with threat-hunting instincts to turn complex forensic data into actionable insights.
code11 years of coding experience
github-logo-circle

Github Skills (12)

amazon-elasticsearch10
neo4j10
elasticsearch10
elasticsearchquery10
active-directory10
aws-elasticsearch10
python10
flask10
flask-ask10
elasticsearch-api10
security10
javascript9

Programming languages (4)

C++JavaScriptHTMLPython

Github contributions (5)

github-logo-circle
JPCERTCC/LogonTracer

Nov 2017 - Dec 2022

Investigate malicious Windows logon by visualizing and analyzing Windows event log
Role in this project:
userBack-end Developer
Contributions:16 releases, 123 commits, 11 PRs in 5 years 1 month
Contributions summary:Shusei's initial contribution involved adding the core functionality of LogonTracer, likely the primary logic for analyzing Windows event logs. Subsequent commits addressed various issues, including fixing a bug related to the upload status in the web UI, installing flask correctly and fixing port, fixing an issue where the parsing status was infinite, supporting the importing of multiple EVTX files, and also addressing various performance bottlenecks that were caused by the large size of the XML files. They also implemented key features for the web interface, and support for Elasticsearch for storing and retrieving data.
active-directoryvisualizationanalyzingwindowsdfir
JPCERTCC/MalConfScan

Apr 2019 - Aug 2021

Volatility plugin for extracts configuration data of known malware
Contributions:7 releases, 39 commits, 1 PR in 2 years 4 months
malwaremalware-detectionvolatilityextractsforensics
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial