Siva mani vinukonda

I’m a cybersecurity undergraduate specializing in penetration testing, focused on practical exploitation of web applications, SSH services, Active Directory environments, and internal networks. I’m especially drawn to lateral movement, network pivoting, credential attacks, and post-exploitation techniques.

In my Cybersecurity Intern role (Jul 2025 – Aug 2025), I monitored and analyzed network traffic with Wireshark to spot anomalies, and I helped configure firewall rules to prevent unauthorized access. I also performed vulnerability assessments on WebGoat using OWASP ZAP, documenting findings with proof-of-concept, risk analysis, and mitigation strategies.

My projects deepen what I learn in real attack paths: I built an SSH Penetration Testing & Hardening Lab (Mar 2026) where I enumerated OpenSSH with Nmap, executed brute-force and password spraying with Hydra and NetExec, and demonstrated remote command execution with SSH and Metasploit. I also cracked passphrase-protected private keys (ssh2john and John the Ripper) and practiced persistence, port forwarding, reverse shells, and data exfiltration via SCP.

I’ve also worked on Network Pivoting & Tunneling with Ligolo-Ng (Feb 2026) using single/double pivoting and internal enumeration with Nmap and CrackMapExec, plus a Web Application Penetration Test & Vulnerability Assessment (Jan 2026) that included insecure file upload, authentication flaws, and achieving privilege escalation. With CompTIA PenTest+, Security+, and Network+, and my Hack The Box and TryHackMe performance, I bring curiosity, rigor, and a strong defensive mindset to every engagement.