Security Researcher & Penetration Tester

PixRei

Developing Skills

Offensive security specialist. CTF challenges. Building portfolio. Hunting for opportunities.

📝 View Writeups TryHackMe HackTheBox
// who am i

About

Security enthusiast with hands-on penetration testing experience. Currently on a roadmap to land my first cybersecurity role.

My approach combines practical offensive security skills (Top 6% TryHackMe, 45+ HackTheBox machines) with real-world business experience from running an international e-commerce operation.

I bring a unique perspective: understanding both how to break systems and how businesses actually work. Currently building portfolio, pursuing certifications, and actively seeking junior security roles.

3+
Upcoming Projects
Top 6%
THM Global Rank
45+
HTB Machines Pwned
2+
Learning Paths Done
pixrei@arch:~/security
$cat current_status.txt
→ Phase: 0 | Stage: Portfolio Building
→ Focus: Writeups + Visibility + Networking
→ Target: Junior Security Role (Remote)
$ls ./completed_paths/
→ Jr_Pentester.path
→ Red_Teamer.path
$
// learning in public

Featured Writeups

Detailed walkthroughs of HTB and TryHackMe machines

1Total Writeups
1HackTheBox
0TryHackMe
HackTheBoxEasyWindows

Access

Physical security machine exploiting anonymous FTP, MDB database credential extraction, and Windows saved credentials for privilege escalation.

FTPDatabaseSavedCreds
Read
COMING SOON

Next Writeup

More writeups coming soon! Currently working on documenting HTB and THM machines.

soon
View All Writeups
// credentials

Certifications

Building verified proof of skills

Completed
🏆

TryHackMe Jr Pentester Path

Comprehensive learning path covering penetration testing methodology and tools.

Completed
🔴

TryHackMe Red Teamer Path

Advanced path covering red team operations, C2 frameworks, and adversary emulation.

Soon
🎯

CAP - Certified AppSec Practitioner

SecOps Group certification covering OWASP Top 10 and web application security fundamentals.

Planned
🔓

eJPT - Junior Penetration Tester

INE Security hands-on certification. 72-hour practical exam proving real pentesting skills.

Planned
💥

eWPT - Web Application Penetration Tester

INE expert-level web security certification. Advanced bypass techniques and complex attack scenarios.

// what i build

Projects

Security tools and research

PLANNED
🔍

Port Scanner

Custom Python port scanner with service detection. Building fundamental security tooling from scratch.

PythonNetworkingTool Dev
PLANNED
🛒

E-commerce Security Audit

Security assessment framework for Shopify stores. Combining business experience with security knowledge.

E-commerceAuditOWASP
PLANNED
🎣

Phishing Analysis Reports

Analysis of real phishing attempts with IOC extraction. Documenting threat intelligence from actual attacks.

Threat IntelAnalysisIOCs
// my stack

Skills

Offensive Security

  • Penetration Testing Methodology
  • Web Application Security
  • Network Enumeration
  • Privilege Escalation
  • Active Directory Attacks

Tools

  • Nmap / Masscan
  • Burp Suite
  • Metasploit
  • Gobuster / Ffuf
  • Wireshark

Development

  • Python Scripting
  • Bash Automation
  • Linux Administration
  • Git / GitHub
  • Docker Basics

Platforms

  • TryHackMe (Top 6%)
  • HackTheBox
  • Linux (Arch BTW)
  • Windows Server
  • Kali Linux
Roadmap: Jr_Pentester → Red_Teamer
Phase 0
Stage 1
CAP Cert
Stage 2
Portfolio
Stage 3
eJPT
Stage 4
Job Hunt