Projects & Writeups

A collection of my technical write-ups, CTF walkthroughs, and infrastructure projects. Focusing on practical exploitation, vulnerability analysis, and secure architecture.

HackTheBoxCTF Writeup
Hard

Garfield - Active Directory Compromise

Abused writable ACLs to plant a malicious logon script, performed lateral movement, and forged an RODC Golden Ticket to fully compromise the domain.

Active DirectoryBloodHoundRubeusMimikatz
Read More
HackTheBoxCTF Writeup
Medium

DevArea - Apache CXF LFI & RCE

Exploited CVE-2022-46364 in Apache CXF for LFI, leaked admin credentials, and leveraged a world-writable binary for privilege escalation.

CVE-2022-46364LFIPrivEscDocker
Read More
Real-WorldPentest Report

Internal Network Security Audit

Conducted a comprehensive internal vulnerability assessment. Identified misconfigured SMB shares, applied Active Directory group policies, and patched vulnerable Splunk endpoints.

NmapSplunkRemediationFirewalls
Read More
TryHackMeLearning Path
Easy

Advent of Cyber 2025

Completed the intensive cybersecurity challenge focusing on log analysis, malware reverse engineering, and defensive security postures.

WiresharkLog AnalysisBurp Suite
Read More