Proud to see us featured for crushing the Global Collegiate Penetration Testing Competition (CPTC); taking 3rd place 🏆 at the Great Lakes Regional hosted at Baldwin Wallace University in Ohio. Huge shoutout to my teammates: Mohamed Trigui (team captain), Benjamin de Pater, Natorion Johnson, Kacper Stasik, and Mohithaa Ekambaram!

Big thanks to our coach John Ford hosting 6-hour training sessions every Saturday for 10 weeks leading up to the competition. He covered Kerberoasting, LLMNR poisoning, password spraying, report writing, and so much more. John is a huge reason we performed the way we did!

Thank you to Professor Jeremy Hajek for creating the Smart Lab where we hosted every Saturday session, and for letting us run our Proxmox servers there with Kali attacker VMs plus Windows and Linux target machines! Also, thank you to Professor James Papademas for traveling with us to Ohio and supporting the team throughout the weekend.

My focus was web exploitation, discovering stored cross-site scripting (XSS) in the competition environment. I leaned on Burp Suite, Nikto, and ffuf, plus a few Node.js scripts I wrote to automate and validate payloads, which was a fun way to combine my years of web development with offensive security.

Check out the article: https://lnkd.in/gsi3JCTa hashtag#CPTC hashtag#Cybersecurity hashtag#Pentesting hashtag#RedTeam