robsware

Home

Below is a list of IT related achivements that may not deserve a full blog post. Mainly a way for me to keep track of any notable events.

2023:
* Obtained my OSWE certification
* Built a customized live kali image to automatically establish reverse proxies and connections to a VPS on boot Customized according to my employer's requests
* Built a daily appsec puzzle generator powered by GPT4
2022:
* Obtained my OSEP certification
* Completed Cybernetics pro lab on HackTheBox
* Fully compromised a large US datacenter (Pentest)
* Built an on prem AD lab with Elastic and an IDS for AD and AV evasion practice
* Onboarded junior pentesters and helped them get started up
* Built an IoT AC controller from scratch, including the hardware
2021:
* Reached Port Swigger Top 10 Hall of Fame
* Set up the full infrastructure for a pentest team, including VPNs, VPSs and auto config scripts for easy configuration
* Fully compromised an F500 tier organization (Pentest)
* Built UMP9, a fully featured Discord chatbot powered by self hosted AI
* Conducted in-house training against phishing and other common attack vectors
* Completed Sektor7 Malware Essentials
* Deveoped a power efficient network tap based on a Raspberry Pi to be used in physical assessments
2020:
* Built 11, a fully featured Discord chatbot focused on military trivia powered by GPT3
* Started this blog and writing on Medium (100-200 monthly readers)
* Completed OffShore pro lab on HackTheBox
* Obtained my CRTP certification
* Made a rudimentary stock trading engine using Cellular Automata
* Obtained my OSWP certification
* Built Defendy, an easy to deploy access point that creates a secure VLAN for untrusted IoT devices using a Raspberry Pi and sniffs for suspicious behaviour using Suricata
2019:
* Obtained my OSCP certification
* Reached Pro Hacker rank on HackTheBox
* Updated and improved a large legacy code base designed to scan AD and SMB policies
* Taught in-house lockpicking classes
* Performed replay attacks demos on my own keyfob to unlock my own car
2018:
* Wrote various vulnerability scanning toolsets using the Qualys API
* Public speaking in front of audiences of 100 to 300 on topics of IoT security and blockchain
* Started hosting local events to demo infosec concepts
* Took active part in large scale business meetings and negotiations with EDR and AV vendors
2017:
* Built various web scrapers and API enablers for data gathering
* Wrote scripts and tooling to orchestrate IBM AIX servers
* Developed simple stock trading algorithms based on sentiment analysis using Bayesian Machine Learning
2016:
* Wrote a Monte Carlo simulator in python to simulate effects on inflation on the UK economy
* Published an iOS app based on fitness gamification