Cybersecurity expert,

front-end developer,

video editor.

The project aims to explore the basic principles of Linux kernel driver operation. The task is to independently develop a driver that operates as a Linux kernel module to handle a basic keyboard. The driver should log all key presses and save them in a chosen manner. Additionally, the driver should include an easter egg that performs an extra operation selected by the authors when the so-called Konami Code is detected on the keyboard. This operation could, for example, involve playing a melody using the system's beeper. The project also includes a browser extension that allows monitoring of the key presses directly from the browser.

The "pcap-extractor" is a sophisticated application designed to extract files and URLs from PCAP (Packet Capture) files, with the capability to scan for potentially insecure URLs or files that may pose a threat to users. Utilizing Tauri, React, and TypeScript, it offers a lightweight and efficient solution for analyzing network traffic data, providing critical insights for cybersecurity and network management.

The "ZIT-OWASP-Top-Ten-Implementation" project provides practical implementations of some OWASP Top Ten security risks. It is designed to help developers and security professionals better understand and mitigate common vulnerabilities in web applications. By demonstrating how these security risks can be exploited and how to prevent them, the project serves as a valuable educational resource for improving web application security. The implementation is particularly useful for those looking to enhance their knowledge of secure coding practices and vulnerability management.

A detailed report prepared on a series of labs focused on penetration testing, covering the configuration of tools such as VMWare Fusion, Kali Linux, and the TryHackMe platform. The labs included various tests, such as port scanning using Nmap, analyzing web application vulnerabilities to XSS and SQL Injection attacks, and privilege escalation in Linux systems using tools like LinEnum and LinPEAS. The report contains detailed descriptions of each step taken and the results of these operations, illustrated with screenshots. The documentation demonstrates skills in conducting comprehensive IT security tests.

The document is a detailed report on advanced penetration testing techniques applied to networks and web applications. It covers a wide range of security assessments, including information gathering, configuration management, identity and access management, session management, and various injection attacks. The report also delves into specific vulnerabilities such as Cross-Site Request Forgery (CSRF), Local File Inclusion (LFI), Command Injection, Host Header Injection, and HTTP Smuggling. Additionally, it includes an analysis of mobile application security using MobSF, along with insights into low-level programming, reverse engineering, and buffer overflow exploits. The comprehensive analysis, supported by methodologies, tools, and findings, showcases a strong understanding of modern web and mobile application security. The report is illustrated with screenshots and code snippets, providing a clear demonstration of the processes and outcomes of the conducted tests.