All Posts

When I started preparing for the Practical OSINT Research Professional (PORP) exam, I couldn’t find a single detailed blog post or real exam experience that answered my questions. No roadmap, no practical tips — just vague outlines or “marketing-style” blurbs. So I wrote this, hoping it becomes the go-to for anyone who wants to understand what PORP is really about, how to prepare for it, and whether it’s worth your time and money.

Learn how I passed the Certified Red Team Professional (CRTP) exam on my first try. This post breaks down my background, prep strategy, lab tips, exam approach, reporting process, and key takeaways — with no fluff, just real-world Active Directory exploitation.

Passed OSCP on my third try — here’s what I learned. After a year of intense prep, two failed attempts, and a lot of self-reflection, I finally earned my OSCP with 90 points. This post is my full journey: mindset, strategy, tools, mistakes, and what actually made the difference. No fluff — just lessons learned the hard way.

A deep dive into CVE-2025-4222 — how I discovered it, what causes it, when it triggers, and how it can be exploited. Includes a full analysis, PoC, and mitigation advice.