root@prince /projects

Security Lab & Projects

A curated set of labs and implementations designed to demonstrate how I think about attack paths, detection, and operational hardening.

System Penetration Test

Red Team

Complete external penetration test on a Linux-based web application and SSH service. Enumeration, credential discovery, lateral movement, and privilege escalation led to a full system compromise (root access).

  • Identified open SSH, HTTP, and MySQL via Nmap and service enumeration.
  • Discovered sensitive directories via Gobuster and manual web analysis.
  • Gained initial access using Hydra against SSH (weak/default credentials).
  • Performed Linux privilege escalation leveraging misconfigured sudo.
Tech:
  • Nmap
  • Gobuster
  • Hydra
  • SSH
  • Linux PrivEsc
  • TryHackMe
Full Report

Nmap service discovery and directory enumeration used to map exposed surfaces.

Nmap scan results on RT-Pen101 Gobuster directory brute force on RT-Pen101

Credential brute force and initial foothold via SSH using weak/default credentials.

Hydra SSH brute force output SSH session established to compromised host

Local enumeration and exploitation of misconfigured sudo to escalate to root.

Privilege escalation path on RT-Pen101

SOC Home Lab โ€“ SIEM + IDS

Blue Team

Multi-VM SOC lab with a SIEM, Zeek/Suricata sensors, and Windows/Linux endpoints generating realistic logs (web attacks, brute force, malware-like behavior).

  • Built log pipelines from endpoints to SIEM (Sysmon / Winlogbeat / Filebeat).
  • Designed basic correlation rules for brute-force, web exploitation, and C2 patterns.
  • Documented investigation workflows and incident timelines.
Tech:
  • Splunk / Elastic
  • Zeek
  • Suricata
  • Sysmon

OpenWrt Router & WireGuard Lab

Infra

Customized an OpenWrt router to route specific game and security traffic via WireGuard to a low-latency endpoint, while enforcing DNS filtering and ad-blocking.

  • Policy-based routing for specific IP ranges and ports.
  • Local DNS resolver with ad-blocking and security lists.
  • Performance tuning for stable latency under load.
Tech:
  • OpenWrt
  • WireGuard
  • DNS / Firewall

Cybersecurity Portfolio Site

This Site

Dark, minimalist, cyber-themed portfolio designed for recruiters and hiring managers in the UAE market, optimized for GitHub Pages.

  • Plain HTML/CSS/JS for easy hosting and auditing.
  • Dark/light mode, responsive, and accessible structure.
  • Positioned around SOC, pentest, and system admin roles.
Tech:
  • HTML
  • CSS
  • JavaScript
  • GitHub Pages
×
Evidence screenshot