Cybersecurity
This page is meant to keep track of my progress in acquiring Cybersecurity skills.
The following timeline shows that I've been experimenting and learning IT skills for quite some time. More recently, I've started focusing on Cybersecurity. This timeline will then continue to receive updates over time.
2026
- Still active on TryHackMe (ranking in top 2%).
- Completed the Microsoft Security Essentials (focused on Azure) course.
- Built a full-stack web application in Python (Flask) and JavaScript, integrating the Copernicus Atmosphere API for real-time air quality data retrieval and EPA-standard Air Quality Index computation.
- Configured a GitLab CI/CD pipeline with SAST and secret detection stages, and deployed the web application on AWS EC2 behind an Nginx reverse proxy with HTTPS.
- For the web app above, conducted a structured vulnerability assessment following OWASP Top 10 (2025) methodology using Nmap, Nikto, Burp Suite, and pip-audit. Identified, classified, and remediated 5 vulnerabilities and documented findings in a formal pentest report including CVSS scores, evidence, and verified remediations.
- For the web app above, produced a Security Operating Procedures (SECOPS) document covering asset inventory, risk register, ISO 27001 Annex A control mapping, access control policy, patch management procedure, and incident response procedure.
- Joined the AI Security Fundamentals course (still in progress).
2025
- Active on TryHackMe, attended CNCF meetup at Palo Alto Networks, and went to FOSDEM.
- Completed the "Cybersecurity 101" and "Security Engineer" paths on TryHackMe and continued making daily progress on the platform.
- Made my first open source contribution, on the GitLab codebase.
- Completed the AI Security Essentials course from Varonis.
2024
- Completed the Google Cybersecurity Professional Certificate.
- Started completing learning modules on TryHackMe.
- Attended Cyber Booked (event organized by ISACA, ISC2, SSA and OWASP) and got my first CPE points!
2023
- Set up a VPS running OpenBSD. This was more difficult as there is nowhere near as much information online and one has to rely on the man pages.
2021
- Ran my first Ubuntu based VPS, hosting a website and a Nextcloud instance which I installed manually (involved getting a certificate, setting up a database, configuring nginx). The nextcloud instance was installed on a subdomain of the website.
2019
- Started my first job which involved running experiments and processing data on Linux machines. More automation scripts, mostly in Python.
2018
- Started using remote access (via ssh), and writing bash scripts to automate tasks for my master thesis.
2016
- Started using Ubuntu based distributions as main driver on my personal laptop.
2015
- Explored different Linux distributions, mostly Ubuntu based.
2014
- First time dual booting my windows laptop with Ubuntu.
2013
- Flashed CyanogenMod on my HTC Sensation (allowed me to upgrade the running android version).
2012
- Flashed android on my HTC Touch Dual (running Windows Mobile).