PixRei
Developing Skills
Offensive security specialist. CTF challenges. Building portfolio. Hunting for opportunities.
About
Penetration testing methodology focused on systematic enumeration, vulnerability analysis, and exploitation. Experienced with web application security testing, network penetration testing, and Windows/Linux privilege escalation techniques.
Core competencies include reconnaissance and OSINT, service enumeration, manual and automated vulnerability assessment, exploitation, and post-exploitation. Comfortable working with industry-standard tools and custom scripting for automation.
Currently pursuing eJPT certification while actively documenting methodologies through detailed writeups. Background in IT operations and Python automation provides strong foundation for security tooling development.
Featured Writeups
Detailed walkthroughs of HTB and TryHackMe machines
Access
Physical security machine exploiting anonymous FTP, MDB database credential extraction, and Windows saved credentials for privilege escalation.
Next Writeup
More writeups coming soon! Currently working on documenting HTB and THM machines.
Security Guides
Hardening walkthroughs, tool setups, and offensive security guides
Arch Linux Hardening for Pentesters
Step-by-step guide to securing an Arch Linux workstation — firewall, kernel hardening, Bluetooth lockdown, file integrity monitoring. Every parameter explained.
VPN Kill Switch Setup
Configure a bulletproof VPN kill switch on Linux to prevent traffic leaks during pentesting engagements.
Home Pentest Lab with Proxmox
Build an isolated penetration testing lab — vulnerable VMs, network segmentation, attack/defense scenarios on a budget.
Certifications
Building verified proof of skills
TryHackMe Jr Pentester Path
Comprehensive learning path covering penetration testing methodology and tools.
TryHackMe Red Teamer Path
Advanced path covering red team operations, C2 frameworks, and adversary emulation.
eJPT - Junior Penetration Tester
INE Security hands-on certification. 72-hour practical exam proving real pentesting skills. Target: April 2026.
CAP - Certified AppSec Practitioner
SecOps Group certification covering OWASP Top 10 and web application security fundamentals.
CPTS - Certified Penetration Testing Specialist
HackTheBox advanced certification. Comprehensive practical exam covering full penetration testing methodology. OSCP alternative.
Projects
Security tools and research
Port Scanner
Custom Python port scanner with service detection. Building fundamental security tooling from scratch.
E-commerce Security Audit
Security assessment framework for Shopify stores. Combining business experience with security knowledge.
Phishing Analysis Reports
Analysis of real phishing attempts with IOC extraction. Documenting threat intelligence from actual attacks.
Skills
Offensive Security
- Penetration Testing Methodology
- Web Application Security
- Network Enumeration
- Privilege Escalation
- Active Directory Attacks
Tools
- Nmap / Masscan
- Burp Suite
- Metasploit
- Gobuster / Ffuf
- Wireshark
Development
- Python Scripting
- Bash Automation
- Linux Administration
- Git / GitHub
- Docker Basics
Platforms
- TryHackMe (Top 6%)
- HackTheBox
- Linux (Arch BTW)
- Windows Server
- Kali Linux