About Me

About Me

Alex Dhital

I am Alex Dhital, a passionate Penetration Tester and Red Teamer with a strong passion for offensive security. I hold a BSc. Hons in Computing from London Metropolitan University and possess multiple certifications in offensive security. My expertise spans web application security, network penetration testing, and red teaming. In my spare time i like to play ctfs and boot to root machines on various platforms including hackthebox, tryhackme, root-me, vulnlab or any other platform i get my hands on. I am also a member of the Synack Red Team where i usually hunt for bugs on web application and network infrastructure. I am a tireless seeker of knowledge and continuously seek to expand my knowledge, skill and tradecraft in this ever changing field of information security.

Certifications

OSCP Logo OSCP - Offensive Security Certified Professional
CRTP Logo CRTP - Certified Red Team Professional
CRTO Logo CRTO - Certified Red Team Operator

Find Me Online

Experience

Synack Red Team Synack Red Team:  January 2021 - August 2024

I joined the Synack Red Team in January 2021 after successfully completing their rigorous vetting process, which included application, interview, initial assessments, and onboarding. I passed both the host and web assessments where i was allowed to test both host and web targets on the platform. As a student, Synack has allowed me to generate income in the form of bug bounties, providing a pay-for-skill opportunity. In my spare time, I enjoy hunting for bugs in web applications and conducting penetration testing on their host targets, I particularly enjoy testing internal host as well as web applications in the platform. Additionally, being part of a great community of elite hackers has enabled me to learn from and help other professionals in the field.

Skills

  • Network Penetration Testing: Able to efficiently conduct thorough penetration tests on host systems.
  • Web Application Testing: Able to conduct security testing and attack web application from blackbox approach.
  • Red Team Operations: Interested in simulating sophisticated attacks to test the resilience of security measures.
  • CTF Competitions: Active participant in Capture The Flag competitions to sharpen my skills.

Projects and Resources

You can explore my projects and resources on my GitHub and my comprehensive CheatSheets on GitBook.

avatar
Alex Dhital
OSCP || CRTP || CRTO
Articles
7
Tags
20
Categories
2
Follow Me
Announcement
Comprehensive blogs, in-depth research, and detailed write-ups across various realms of offensive security.
Recent Post
Infiltrating the Domain: Exploiting Active Directory Trusts
Infiltrating the Domain: Exploiting Active Directory Trusts
A Deep Dive into Kerberos - Part 2: Exploiting Design Flaws in Delegation Mechanisms
A Deep Dive into Kerberos - Part 2: Exploiting Design Flaws in Delegation Mechanisms
A Deep Dive into Kerberos: Understanding Kerberoasting and ASREPRoasting Attacks.
A Deep Dive into Kerberos: Understanding Kerberoasting and ASREPRoasting Attacks.
Advanced Password Cracking: Techniques and Tools for Red Teamers and Pentesters
Advanced Password Cracking: Techniques and Tools for Red Teamers and Pentesters
CRTO (Certified Red Team Operator) Review
CRTO (Certified Red Team Operator) Review
Categories
Tags
CRTORed TeamingCobalt StrikeCRTPActive Directoryaltered securityOSCPPEN-200OffsecPassword CrackingHashcatUnconstrained DelegationConstrained DelegationAlternate Service NameS4U2SelfRBCDActive Directory TrustKerberosKerberoastingAsreproasting
Archives
Info
Article :
7
Runtime :
UV :
PV :
Last Update :