My Cybersecurity Journey

Where it really started

My cybersecurity journey didn't begin in a lab — it began with pure curiosity. I wanted to understand how the internet works, why systems fail, and how attackers think. That curiosity grew into studying networking, operating systems, and eventually, how web applications break under real-world conditions.

Today, I'm building myself into a professional pentester — focusing heavily on web application security, payload engineering, red team techniques, and real-world attack simulation.

I’m a self-driven learner with limited resources, but extreme discipline. I document everything, build tools, break apps, fix them, and repeat. This is the long–term path I’ve committed to.

Skills & Focus Areas

Web Application Hacking (core focus)
Deep OWASP Top 10 mastery
XSS payload engineering & DOM-based attacks
BurpSuite Proficiency — intercepting, modifying, exploiting
Recon & enumeration workflow
Full pentesting methodology (manual-first)
Python scripting for offensive tooling
Social engineering fundamentals
Linux & Windows security basics
Beginner Red Team TTPs

Tools I Use

BurpSuite

Nmap

Gobuster / FFUF

SQLMap

Wireshark

Metasploit

Python Scripts

Kali Linux

GitHub & Git

Certifications

ISC2 — Certified in Cybersecurity (CC)

ISC2 • 2024

View Certificate

Cybersecurity Fundamentals Certificate

IPMC • 2024

View Certificate

Planned Certifications

CompTIA Security+
CEH (Certified Ethical Hacker)
Web Pentesting Specialist

My Roadmap as I grow

My focus is on mastery, not rushing:

Master every OWASP vulnerability with real labs
Publish writeups + research on my blog
Build more custom hacking tools in Python
Create polished GitHub security projects
Work toward junior pentester / SOC role