Blog Posts

• September 7, 2025

  LWM #2 - Web Application Fundamentals

  Learn With Me Web Web Applications Fundamentals

  Understanding web application architecture is essential for security testing—from front-end components like HTML and JavaScript to back-end servers, databases, and APIs. Each layer introduces potential vulnerabilities like XSS and CSRF. By learning how clients interact with servers through GET/POST requests, how different databases store data, and how to probe with tools like cURL, you'll know exactly where to look for weaknesses—and how to research public exploits when you find them.

• September 7, 2025

  LWM #2 - Linux File System

  Learn With Me Linux Linux Basics Linux OS Operating System Fundamentals

  Linux’s filesystem hierarchy from /, where everything begins. Learn what lives in /bin and /sbin (essential binaries), /boot (kernel and bootloader), /dev (device interfaces), /etc (system-wide configs), /home (user data), /lib (shared libraries), /media and /mnt (mounted storage), /opt (third-party apps), /root (root’s home), /tmp (ephemeral files), /usr (user-space programs, usr-merge), and /var (changing data like logs). Understand permissions, mounting behavior, and why modern distros symlink /bin, /sbin, and /lib to /usr.

• August 30, 2025

  LWM #1 - Port Numbers

  Learn With Me Port Numbers Transport Layer Networking Computer Networks Fundamentals

  An IP address gets data to the correct computer, but then the port number tells the data which specific application/service to go in. For example it ensures a video stream from YouTube is handled by your web browser on a port like 443, instead of getting incorrectly sent to your email client. This simple but vital system allows dozens of programs to share a single network connection without ever mixing up their messages. And even if we don't use internet, we still need Port numbers!

• August 25, 2025

  Reconnaissance / Information-Gathering

  Pentesting Reconnaissance Information Gathering Google Dorking Amass Subfinder SSL/TLS Basics

  Basic Google Dorking Commands and how to Gather Publically available information about your Target Site. How to combine basic Dorking Commands to do more advance searches. Sub-Domain Enumeration, Directory-Listing, Admin Login-Pages, Files(pdf/csv/doc/xls).

• June 11, 2025

  Starting 1st HTB Path - Information Security Foundation

  HTB Information Security Fundamentals Mindset Writeup

  Sharing my thoughts on starting the HTB Information Security Foundation path — lessons from the first two modules.

• June 9, 2025

  Reason to Start this Blog

  Writeup About me Cyber Security College Life

  As college student and a growing interested in Cyber Security, i am aiming to become a Penetration Tester. This blog documents my learning journey, projects, and growth in practical security skills.