Projects/Upskilling

PROJECTS // UPSKILLING

Upskilling with THM

TryHackMe has given me the opportunity to apply what I learn from my classes to labs where I get some hands on experience with tools and real world scenarios. I am using THM to study for my upcoming PenTest+ certification and see myself using it long after I am done with school.

Deep dive with HTB

I have found that while TryHackMe offers a great learning environment, HackTheBox offers a more challenging experience where you have to think outside of the box. I have used HTB to improve my linux and python skills, and will continue to use it to dive deeper into topics I cover with THM.

Building a SIEM With ELK Stack

By working with Elasticsearch, Logstash, and Kibana, I'll gain in-depth knowledge of these industry-leading tools for data collection, storage, and visualization. Additionally, I want to learn optimal data collection, ensuring I gather the right information from the right sources.

Upcoming Project

Azure Security Project

● Implemented robust role-based access controls (RBAC) to enforce the principle of least privilege, tailored to the specific needs of marketing, accounting, and IT resource groups.

● Strengthened data encryption practices by applying Azure Key Vault best practices, securing data at rest and in transit.

● Improved file backup strategies with custom settings to support business requirements, enhancing data recovery and resilience.

Network Security Project

● Proposed a redesign of the network, designed with security in mind through network segmentation. Suggested cost-effective upgrades to network components in order to improve security and internet speeds.

●Used OpenVAS to scan the environment of a company that just went through a merger, discovering multiple critical vulnerabilities. Additionally used nmap to find and disable unnecessary open ports that could pose a security risk.

● Created a vulnerability assessment report, making suggestions for prioritizing and remediating vulnerabilities.

● Made suggestions for alignment with industry regulations (PCI DSS, HIPAA) in order to minimize the risk of legal issues and data breaches.

Past Projects

Home Lab on the Cloud

Before I started using TryHackMe and HackTheBox, I wanted to create a lab environment for myself that was versatile and scalable. I created this enviornment on AWS.

To launch this lab, I...

I created a Virtual Private Cloud with multiple vulnerable machines and a Kali Linux VM.
Utilized AWS CloudShell to create roles and permissions necessary to import virtual machine images to AWS.

This was a very cost effective and accessible environment for gaining experience with cybersecurity tools, such as Nessus and Nmap.