Mission Archive
Declassified operation files and infrastructure projects.
Project Desert Shield: Enterprise Orchestration
Orchestrate and secure the complete IT infrastructure for a premier UAE-based real estate developer as the sole specialist.
Scope: Enterprise Infrastructure & Cloud Ecosystem
Consolidated fragmented cloud tenants, secured legacy Windows Server environments, and established a unified zero-trust framework for remote business operations.
Implemented enterprise-grade BDR via Veeam, optimized multi-tenant SaaS environments, and hardened perimeter security through advanced firewall management.
Operation Crimson Mirage
Simulate an APT group breaching a financial institution's heavily segmented internal network to test SOC response.
Scope: Global Banking Network - ASIA/PACIFIC
Lateral movement achieved via Pass-the-Hash on legacy Windows Server 2012 R2. Domain Admin privileges obtained within 4 hours.
Implemented Tiered Active Directory Admin model, decommissioned legacy OS, and enforced LAPS.
Project Obsidian Cloud
Identify misconfigurations in a multi-cloud (AWS/Azure) production environment.
Scope: Production Cloud Infrastructure
Discovered an exposed S3 bucket containing raw database dumps and an overly permissive IAM role allowing cross-account access.
Enforced strict SCPs blocking public S3 buckets, removed wildcard IAM permissions, and rotated all compromised AWS keys.
Ghost Protocol Breakout
Evaluate the isolation controls of a newly deployed Kubernetes cluster running sensitive microservices.
Scope: EKS Cluster - US-EAST-1
Unauthenticated Kubelet API allowed pod creation. Escaped container to underlying EC2 node by mounting the host filesystem.
Disabled anonymous auth on Kubelets, enforced Pod Security Admission controls (Restricted), and deployed Falco for runtime security.
Silent Viper Exfiltration
Test Data Loss Prevention (DLP) systems against custom DNS tunneling exfiltration methods.
Scope: Corporate LAN & Egress Points
Successfully exfiltrated 500MB of dummy PII over port 53 without triggering the primary Intrusion Prevention System.
Implemented strict DNS filtering, blocked anomalous TXT record volumes, and routed all egress traffic through a secure web gateway.
Neon Horizon SCADA Audit
Assess the physical and digital boundaries of a critical infrastructure water treatment facility.
Scope: ICS/SCADA Control Network
Identified a misconfigured jump box connecting the IT network directly to the OT network. Modbus commands could be injected.
Physically air-gapped critical OT networks, implemented a dedicated DMZ for jump boxes with enforced MFA.
Zero-Day Mirage
Reverse engineer a proprietary secure messaging client to identify zero-click RCE vulnerabilities.
Scope: Mobile Application (iOS/Android)
Found a memory corruption vulnerability in the media rendering library triggered by malformed WEBP images.
Rewrote the vulnerable parsing logic in Rust (memory-safe), implemented strict input sanitization and sandboxed the media renderer.
Shadow Syndicate Phish
Execute an Adversary-in-the-Middle (AitM) phishing campaign bypassing MFA for C-Suite executives.
Scope: Executive Board Members (15 Targets)
Captured 3 valid session cookies bypassing SMS and Authenticator app MFA. Granted access to confidential board meeting notes.
Migrated all executive accounts to FIDO2 WebAuthn hardware security keys (YubiKeys), rendering AitM phishing ineffective.
Supply Chain Nexus
Audit the internal CI/CD pipeline for potential code injection or credential leakage.
Scope: GitLab CI/CD & Artifactory
Found hardcoded production database credentials in a legacy repository. A compromised developer account could poison release builds.
Integrated HashiCorp Vault for dynamic secrets, implemented container image signing (Cosign), and mandated 2-person code reviews.
Quantum Ledger Breach
Perform a comprehensive smart contract audit for a decentralized finance (DeFi) protocol before mainnet launch.
Scope: Ethereum Smart Contracts (Solidity)
Identified a complex reentrancy vulnerability in the staking pool contract that would allow draining of the liquidity reserves.
Implemented the Checks-Effects-Interactions pattern, integrated OpenZeppelin ReentrancyGuard, and conducted formal verification.
Iron Fortress Bypass
Evaluate physical security and internal network defenses of a remote data center.
Scope: Physical Site - Sector 7
Cloned an employee badge via long-range RFID skimmer. Planted a rogue LAN device dropping a reverse shell into the NOC.
Upgraded physical access controls to high-frequency encrypted badges. Implemented 802.1X NAC to block unauthorized rogue devices.
API Shadow Hunt
Discover and exploit shadow APIs and undocumented endpoints in a massive microservices mesh.
Scope: External Attack Surface
Discovered an undocumented v1 API endpoint lacking authorization checks, allowing IDOR (Insecure Direct Object Reference) to access user records.
Decommissioned legacy endpoints, unified all API routing through a secure API Gateway, and enforced zero-trust authorization checks.
Titanium Endpoint
Test the efficacy of a newly deployed Next-Gen EDR against advanced fileless malware and living-off-the-land techniques.
Scope: Corporate Workstations (Windows 11)
Successfully bypassed EDR hooks using unhooking techniques and direct syscalls, maintaining persistence via WMI event subscriptions.
Tuned EDR behavioral rules to flag anomalous WMI activity, blocked unsigned PowerShell scripts, and enabled Credential Guard.