ID:80670さん

Project Overview : I worked as a Pentester on a project for a business client seeking to strengthen the security of their online services. The goal was to identify and remediate vulnerabilities in several web applications critical to their operations. Our team consisted of 2 pentesters and a project manager, and I was responsible for conducting end-to-end web application assessments, from reconnaissance to reporting. The testing environment included Burp Suite, Nmap, Gobuster, and custom scripts in Python and Bash. Issues Addressed : The main challenge was to detect and exploit security flaws in complex, interconnected web systems while ensuring no disruption to production services. I adopted a methodical black-box and gray-box approach, covering OWASP Top 10 vulnerabilities, logic flaws, and privilege escalation paths. Key innovations included developing custom payloads and automation scripts to enhance coverage and efficiency during testing. Results of the Initiative : Discovered and documented critical vulnerabilities (authentication bypass, insecure direct object references, misconfigured access controls). Delivered a comprehensive report with risk ratings, exploit details, and remediation guidance, enabling the client’s dev team to fix issues quickly. Improved the client’s overall security posture and compliance readiness. Strengthened collaboration between security and development teams, integrating security practices into their SDLC.

Project Overview : I participated in a Red Team Operation aimed at assessing our company’s defensive readiness against real-world cyberattacks. The mission’s objective was to simulate an advanced persistent threat (APT) through spear phishing and controlled intrusion, testing both technical and human resilience. The team included 3 red team operators and a team lead, with coordination from the Blue Team post-engagement for lessons learned. I was primarily responsible for designing phishing campaigns, crafting payloads, and conducting initial access and lateral movement. The operation leveraged tools such as Cobalt Strike, Phishing frameworks, PowerShell, and custom obfuscation techniques. Issues Addressed : The challenge was to replicate a realistic attack chain while remaining stealthy and non-disruptive within the production environment. I engineered targeted spear-phishing emails mimicking legitimate business workflows and embedded payloads with custom evasion techniques to bypass email filters and EDRs. Post-compromise, I mapped internal network routes and identified privilege escalation paths to demonstrate potential impact and data exposure. Results of the Initiative : Successfully achieved initial access via a tailored phishing campaign, demonstrating exploitable social engineering vectors. Identified and documented gaps in email security filters, EDR visibility, and user awareness training. Delivered a comprehensive after-action report with prioritized recommendations for strengthening defenses. The engagement led to enhanced email filtering rules, updated security policies, and improved collaboration between Red and Blue Teams, fostering a proactive defense culture.