Security Researcher & Penetration Tester

PixRei

Developing Skills

Offensive security specialist. CTF challenges. Building portfolio. Hunting for opportunities.

πŸ“ View Writeups TryHackMe HackTheBox
// who am i

About

Penetration testing methodology focused on systematic enumeration, vulnerability analysis, and exploitation. Experienced with web application security testing, network penetration testing, and Windows/Linux privilege escalation techniques.

Core competencies include reconnaissance and OSINT, service enumeration, manual and automated vulnerability assessment, exploitation, and post-exploitation. Comfortable working with industry-standard tools and custom scripting for automation.

Currently pursuing eJPT certification while actively documenting methodologies through detailed writeups. Background in IT operations and Python automation provides strong foundation for security tooling development.

3+
Upcoming Projects
Top 6%
THM Global Rank
45+
HTB Machines Pwned
2+
Learning Paths Done
pixrei@arch:~/security
$cat current_status.txt
β†’ Status: Available for opportunities
β†’ Location: TΓΌrkiye (Remote preferred)
β†’ Focus: Penetration Testing | Web App Security
$ls ./active_work/
β†’ eJPT_lab_progress.md
β†’ htb_writeups/
β†’ automation_scripts/
$
// learning in public

Featured Writeups

Detailed walkthroughs of HTB and TryHackMe machines

1Total Writeups
1HackTheBox
0TryHackMe
HackTheBoxEasyWindows

Access

Physical security machine exploiting anonymous FTP, MDB database credential extraction, and Windows saved credentials for privilege escalation.

FTPDatabaseSavedCreds
Read
COMING SOON

Next Writeup

More writeups coming soon! Currently working on documenting HTB and THM machines.

soon
View All Writeups
// credentials

Certifications

Building verified proof of skills

Completed
πŸ†

TryHackMe Jr Pentester Path

Comprehensive learning path covering penetration testing methodology and tools.

Completed
πŸ”΄

TryHackMe Red Teamer Path

Advanced path covering red team operations, C2 frameworks, and adversary emulation.

In Progress
πŸ”“

eJPT - Junior Penetration Tester

INE Security hands-on certification. 72-hour practical exam proving real pentesting skills. Target: April 2026.

Planned
🎯

CAP - Certified AppSec Practitioner

SecOps Group certification covering OWASP Top 10 and web application security fundamentals.

Planned
πŸ’₯

CPTS - Certified Penetration Testing Specialist

HackTheBox advanced certification. Comprehensive practical exam covering full penetration testing methodology. OSCP alternative.

// what i build

Projects

Security tools and research

PLANNED
πŸ”

Port Scanner

Custom Python port scanner with service detection. Building fundamental security tooling from scratch.

PythonNetworkingTool Dev
PLANNED
πŸ›’

E-commerce Security Audit

Security assessment framework for Shopify stores. Combining business experience with security knowledge.

E-commerceAuditOWASP
PLANNED
🎣

Phishing Analysis Reports

Analysis of real phishing attempts with IOC extraction. Documenting threat intelligence from actual attacks.

Threat IntelAnalysisIOCs
// my stack

Skills

Offensive Security

  • Penetration Testing Methodology
  • Web Application Security
  • Network Enumeration
  • Privilege Escalation
  • Active Directory Attacks

Tools

  • Nmap / Masscan
  • Burp Suite
  • Metasploit
  • Gobuster / Ffuf
  • Wireshark

Development

  • Python Scripting
  • Bash Automation
  • Linux Administration
  • Git / GitHub
  • Docker Basics

Platforms

  • TryHackMe (Top 6%)
  • HackTheBox
  • Linux (Arch BTW)
  • Windows Server
  • Kali Linux
Roadmap: Jr_Pentester β†’ Red_Teamer
Phase 0
Stage 1
eJPT
Stage 2
Portfolio
Stage 3
CAP
Stage 4
Job Hunt