kathail@pentest-station:~

# Select an option:

View Projects Contact Me

Kathail

Cybersecurity Enthusiast

01. About Me

I am currently transitioning into the world of Cybersecurity. While I am early in my journey, I dedicate my free time to hands-on learning, primarily through the Penetration Tester path on TryHackMe and solving challenges on HackTheBox.

My philosophy is "Learning by Doing." I build custom security tools and web applications to understand the underlying mechanics, while actively supplementing my studies with practical labs and network analysis.

CTF Enthusiast
Web Developer
Python App Dev
CachyOS / Arch
Open Source
Constant Learner

02. Battle Station & Skills

kathail@desktop: ~
kathail@desktop:~$ fetch_specs --verbose
OS: CachyOS x86_64
CPU: Ryzen 9 5900X @ 5.62 GHz
Kernel: Linux 6.17.9-2-cachyos
GPU: Radeon RX 7900 XTX
Shell: fish 4.2.1
WM: KWin (Wayland)
Current Training Status
TryHackMe: Top 10%
HackTheBox: Active
Cert Goal: OSCP (Q1 2026)
kathail@desktop:~$

Networking Protocols

TCP/IP & OSI Model
Wireshark & PCAP
Secure Protocols (SSH, TLS)
DNS / DHCP / FTP

Offensive Operations

Enumeration (Nmap)
Web App Sec (Burp Suite)
Exploitation (Metasploit)
Password Attacks (Hydra)

Systems & OS

Linux (Shells & Admin)
Windows Core
Active Directory

Programming & Dev

Python (scripting/tooling)
Web (HTML/CSS/JS)
Bash / PowerShell
MySQL / SQL
ICS / SCADA Security

03. Lab Reports & Projects

NorthScrape Dashboard

Developed an offline-first analytics dashboard for Northern Sweet Supply. Features client-side CSV parsing, drag-and-drop file handling, and instant data filtering using Vanilla JS. Zero-dependency architecture ensuring functionality in low-connectivity field environments.

Read Case Study
#JavaScript #OfflineFirst #DataViz

NorthScrape ETL Engine

Engineered a multi-threaded Python ETL pipeline using `concurrent.futures`. Automates the scraping, cleaning, and aggregation of B2B lead data for Northern Sweet Supply. Includes robust error handling and structured CSV export logic for the frontend dashboard.

Read Case Study
#Python #ETL #Automation

Infrastructure Contractor Site

Designed and deployed a fast, secure, mobile-responsive marketing site for a construction company that repairs and installs critical infrastructure. Hand-coded vanilla stack achieving 100/100 Lighthouse scores. Implemented security hardening including custom Cloudflare WAF rules and strict HTTP headers.

#WebDev #WebHardening #NoFramework

Python Port Scanner + Banner Grabber

Wrote a multi-threaded TCP port scanner in Python using the socket library. Handles timeouts gracefully and grabs service banners. Built while working through offensive security labs.

Read Technical Report
#Python #Sockets #Tooling

Enterprise Active Directory Lab

Stood up a full Windows Server 2019 domain, configured complex GPOs, nested groups, and practiced Kerberoasting + lateral movement attacks in a safe lab environment.

#ActiveDirectory #WindowsServer #RedTeamBasics

Network Traffic Analysis

Deep-dive PCAP analysis with Wireshark: dissected TLS handshakes, ARP poisoning, DNS tunneling, and HTTP anomalies. Documented findings with filters and screenshots.

#Wireshark #PCAP #NetworkSecurity

04. Resume / CV

Kathail

Aspiring Penetration Tester

Ontario, Canada

kathail@pm.me github.com/Kathail

Professional Experience

Full Stack Engineer

Northern Sweet Supply | Contract

  • Full-Cycle Development: Architected and shipped a custom B2B lead generation ecosystem, handling both data acquisition (Python backend) and data visualization (Web frontend).
  • Backend Engineering: Built NorthScrape, a multi-threaded ETL engine that aggregates disjointed market data into structured formats, significantly reducing manual research time.
  • Frontend Architecture: Developed a serverless, offline-first dashboard enabling sales teams to filter and analyze lead data in zero-connectivity field environments.
  • Operational Impact: Streamlined the sales pipeline by automating data entry and providing real-time intelligence tools.

Freelance Web Developer

Critical Infrastructure Contractor

  • Performance Engineering: Engineered a hand-crafted, framework-free responsive website achieving perfect 100/100 Core Web Vitals scores for optimal SEO and user experience.
  • Security Hardening: Configured production environment with custom Cloudflare WAF rules, strict Content Security Policy (CSP), and HSTS headers to mitigate common web vectors.

Certifications & Awards

kathail@certs:~$ ls -la ./achievements
drwx------ 1 kathail CompTIA_Security+ [In Progress]
-r-------- 1 kathail THM_PreSecurity.pdf View_Cert
drwx------ 1 kathail Google_Cyber_Cert [In Progress]
-r-------- 1 kathail THM_JrPentester [In Progress]

Virtual Labs & Learning Paths

Structured Curriculum

Comprehensive learning paths covering offensive and defensive security methodologies.

THM: Pre-Security
THM: Cyber Security 101
HTB: Starting Point (Tier 0)
HTB: Starting Point (Tier 1)

Key Modules Completed

Specific technical modules completed on TryHackMe demonstrating core competency.

Systems Engineering
  • Linux Fundamentals (Parts 1-3) & Shells
  • Windows Fundamentals (Parts 1-3)
  • Active Directory Basics
  • Windows Command Line & PowerShell
Network Security
  • Wireshark: The Basics & Traffic Analysis
  • Core Protocols: TCP/IP, DNS, HTTP, SMB
  • Secure Protocols: SSH, TLS, VPN
  • OSI Model & Packet Analysis

Independent Education

Digital Asset Management & Systems Administration

Independent Ventures

  • Platform Integrity & Security: Served as Lead Administrator for a legacy MMORPG project. Analyzed server logs and user behavior to detect logic exploits, packet manipulation, and unauthorized automation (bots).
  • Community Governance: Led a distributed moderation team for a high-traffic forum. Established enforcement SOPs, handled dispute resolution, and maintained platform compliance.
  • Growth & Exit Strategy: Executed SEO and engagement strategies for niche web communities, scaling traffic metrics to negotiate successful profitable exits (asset sales).
  • Infrastructure: Maintained private game servers using VMware virtualization and secured remote administration channels (SSH/SFTP).

Full Stack Development & Automation

The Odin Project & Codecademy

  • Rigorous Curriculum: Completed The Odin Project’s full-stack path, mastering DOM manipulation, asynchronous JavaScript (Promises/Async-Await), and API integration without relying on frameworks.
  • Project Implementation: Architected and deployed responsive web applications and Python automation tools, implementing version control (Git) and clean code principles.
  • Tooling Proficiency: Gained proficiency in Linux command line workflows, package management (npm/pip), and development environment configuration.

Offensive Security Research & CTF

2023 - Present

  • CTF Operations: Active participant on TryHackMe (Top 10%) and HackTheBox, consistently compromising retired machines to sharpen enumeration and privilege escalation methodologies.
  • Vulnerability Research: Regularly analyze disclosed Bug Bounty write-ups (HackerOne/Bugcrowd) to deconstruct real-world exploit chains, logic flaws, and business email compromise (BEC) tactics.
  • Lab Simulation: Engineered a virtualized home lab environment to simulate enterprise attacks, practicing lateral movement, Active Directory exploitation, and defensive hardening.