Tools & Skills

“A comprehensive showcase of my technical expertise and tools, structured by domain and aligned with my professional certifications.”

Cloud Architecture & DevOps

  • AWS (EC2, S3, Lambda, VPC, CloudFormation, IAM, Route 53)
  • Azure (Resource Manager, AKS, DevOps Pipelines)
  • Google Cloud (Compute Engine, IAM, Cloud Functions)
  • Terraform, Ansible, Docker, Kubernetes
  • CI/CD: GitHub Actions, Jenkins, Azure DevOps

Cybersecurity & DevSecOps

  • Nessus, OpenVAS, Qualys — Vulnerability Scanning
  • Burp Suite, OWASP ZAP, sqlmap — Web Security Testing
  • Metasploit, Cobalt Strike (simulations), Empire/Sliver
  • BloodHound, CrackMapExec, Rubeus, Mimikatz
  • SIEM & Monitoring: Splunk, ELK Stack, Sysmon
  • Container Security: Trivy, Aqua Security, Kube-hunter

Enterprise Penetration Testing - GPEN

  • Recon: Maltego, theHarvester, Amass, Recon-ng
  • Scanning: Nmap, Masscan, Netcat, WhatWeb
  • Exploitation: Metasploit, Impacket, Responder
  • Post-Exploitation: BloodHound, PowerView, Mimikatz
  • Password Attacks: Hashcat, John the Ripper, Hydra
  • Analysis: Wireshark, tcpdump

Core Skills

  • Threat Modeling & Risk Assessment
  • Secure Software Development Lifecycle (SSDLC)
  • Infrastructure as Code Security (IaC)
  • Incident Response & Threat Hunting
  • Team Leadership & Solution Architecture