Status
Working on Pushmate.net 🎯

Andy Guo

I'm a 20yo studying computer science @umdcs who likes to build and break things. I'm currently focused on security, startups, philosophy, and design. I started my journey in high school, developing and selling bots that would buy rare sneakers and apparel. Through these endeavors, what began as an experiment transformed into a burning passion for shipping beautiful products and user experiences.
Recent Interests
Web Agents
LLM Technology
Automation
Product Design
Sports/Esports Analytics
VM-Based Bot Mitigation
Rabbit Tech Research
Deep Convos
Clairo, d4vd, 21 Savage
Cursor.sh
Framer Motion
NFL Playoffs
Shake Shack
Work Experience
Stackline Logo
StacklineSWE Intern • 06/2023 - 08/2023

Applied reverse engineering techniques to unveil and patch numerous security vulnerabilities and exploits within a mobile app with over 500,000 all-time users, and learned in the presence of experienced engineers and executives of a growth-stage company based in Seattle, WA.

TBB Logo
TheBotBibleLead SWE • 05/2021 - 08/2021

Spearheaded the successful 2.0 release of a browser extension, driving a substantial increase in the company's Twitter followers to 30,000, monthly customer base to 2,000, and achieving a peak of $50,000 MRR.

Current Projects
Pushmate logo
PushmateFounder • 08/2023 - Present

An app that automates Duo Push MFA login requests for college students, and allows them to replace Duo with other MFA providers, such as Authy and Google Authenticator.

Saved.GG Logo
Saved.GGFounder • 05/2022 - Present

One place for gamers to store, edit, and share their favorite VALORANT moments. Aiming to bring the best of FPS/gaming together on one platform.

Past Ventures
Sythe Logo
SytheFounder • 07/2020 - 02/2021

Chrome extension that automated checkout across hundreds of retailers. Accrued over 6,500 users, $5000 MRR, and 7,500 Twitter followers, operated by a team of 10 teenagers from the US, Malaysia, and Bulgaria. Shutdown abruptly due to personal health-related reasons.

SpookSoftware Logo
Spook SoftwareFounder • 04/2020 - 08/2020

Desktop automation software designed to purchase extremely limited sneakers from retailers such as Shoe Palace, Footlocker, and more. Eventually focused full-time on Sythe.

SpiritSNKRS Logo
Spirit RoboticsFounder • 12/2019 - 02/2020

Desktop automation software to purchase high-value sneakers from Nike's SNKRS platform. Attained 2,500+ beta waitlist signups and 1,000 Twitter followers, followed by a 2-week lifespan before pursuing other ventures instead.

Other Projects
VeoRide Exploration08/2023

Reverse engineered the Veo Micromobility scooter mobile application (that's a nasty sentence). I found an extremely severe vulnerability that I'm currently working on disclosing.

TransitGo Exploration07/2023

Reverse engineered the TransitGo app, a mobile application that allows users to pay for Seattle's public transportation. I found an amusing method that allows users to ride for free. I may or may not have used this to commute to work for free over the course of my internship in Seattle. To be fair the drivers don't really care.

Duo Mobile Exploration07/2023

Reverse engineered the DuoSecurity mobile app, created my own script to auto-approve my login requests whenever I want. This is directly tied to my little project, Pushmate, which is listed above!

Telli04/2023 - 05/2023

Aimed to create study guides and flashcards for students using LLM technology and OCR. The project was abandoned due to the lack of a viable business model. Worked on this with James Xu, Elizabeth Qiu, and Nico (sorry heh I don't know your last name). I've observed many similar projects since then, best of luck to those!

Fetch Rewards ExplorationFeb 2023

Reverse engineered Fetch Rewards, a mobile application that allows users to submit receipts for cash and gift card rewards. I have discovered some things, but I cannot reveal what they are due to legal reasons. All work will be disclosed to Fetch.

MusePay05/2022

A social hub for friends and family to monitor finance, a simple and secure platform for lending and spending, and a non-destructive companion to one's buying experience. Spending other people's money has never been easier and more secure. Built for the Bitcamp 2022 hackathon. Devpost

GOAT Black Friday11/2021

GOAT is a sneaker marketplace that hosts a Black Friday sale every year where they release extremely valuable sneakers in a FCFS release style. I extracted the API endpoints from the mobile app and used them to create a bot that automatically detected the release in milliseconds, solved the CAPTCHA challenge, submitted the purchase, and polled the enqueued order's status.

Veve Reversal10/2021

My first ever foray into reverse engineering Android apps. Veve is a digital collectibles marketplace that hosts a variety of NFTs, including Marvel, DC, and more. My plan was to build a bot for their releases which would net me collectibles which I could then exchange for gems, and eventually cash! I eventually gave up, thanks to Kasada's bot mitigation technology.

Protego05/2021

A privacy-forward Chrome Extension that allows users to monitor where their data is being sent and how it is being used. Built for the TeenhacksLI 2021 hackathon and won the People's Choice award. Devpost

Visum05/2021

A prototype comprised of a Chrome extension and a Node script to automate the process of solving Google ReCAPTCHAs (y'know, the thing that asks you to select traffic lights). I whiteboarded all the logic for correlating bounding box data with the correct image tiles, which was super fun. Object detection technology provided by AWS Rekognition. Demo

spiritbrowser12/2019

Aimed to create study guides and flashcards for students using LLM technology and OCR. The project was abandoned due to the lack of a viable business model.

my first ever website08/2018

created my first website using html/css and coding in the now-retired atom text editor! :)

This webpage is constantly being worked on, and may not be fully up-to-date.

Last updated: Jan 18, 2024.

Copyright 2024. Andy Guo