Author Image

Hi, I am Nitel Phyoe

Phyo Zin Khant

Offensive Security Engineer (Ex-Full Stack)

I began my career as a Full Stack Developer at IrraHub Co., Ltd., building and maintaining web applications while strengthening my foundation in software engineering and cross-platform development. I later transitioned into cybersecurity, completing the TryHackMe Junior Penetration Tester path, TCM Security’s Practical Ethical Hacking course, and earning the PJPT certification. I further advanced through the Hack The Box Penetration Tester path and continue to develop hands-on expertise through regular lab practice, with a strong focus on Active Directory security, privilege escalation, and red team methodologies as I prepare for the OSCP certification. I am passionate about offensive security and dedicated to continuous learning and growth in the field, with a commitment to sharing knowledge through technical writing and community engagement.

Pritical Junior Penetration Tester (PJPT)
Analytical Thinking
Problem Solving
Continuous Learning
Professional Ethics

Skills

Active Directory
Active Directory

Experience with AD enumeration, privilege escalation, lateral movement, and common attack paths in lab environments.
Web Application Security
Web Application Security

Familiar with OWASP Top 10 vulnerabilities, manual testing techniques, and exploitation fundamentals.
Penetration Testing
Penetration Testing

Hands-on experience through TryHackMe and Hack The Box using structured testing methodologies.
Burp Suite
Burp Suite

Web traffic interception, vulnerability testing, and manual exploitation.
Nmap
Nmap

Network scanning, service enumeration, and attack surface discovery.
Metasploit
Metasploit

Basic exploitation and post-exploitation techniques in controlled lab environments.
Hashcat
Hashcat

Password cracking and hash analysis for credential auditing in controlled lab environments.
NetExec (CrackMapExec)
NetExec (CrackMapExec)

Post-exploitation framework for Active Directory enumeration and lateral movement testing.
BloodHound
BloodHound

Active Directory attack path analysis and privilege escalation mapping.
PowerView
PowerView

PowerShell-based Active Directory enumeration and reconnaissance.
Certipy
Certipy

Active Directory Certificate Services (AD CS) enumeration and exploitation techniques.
BloodyAD
BloodyAD

Active Directory object manipulation and privilege escalation in lab environments.
Python
Python

Used for scripting, automation, and security tooling.
JavaScript
JavaScript

Experience in front-end and back-end web development.
Java
Java

Object-oriented programming and backend development fundamentals.
C / C++
C / C++

Strong understanding of low-level programming concepts and memory management fundamentals.
Flutter
Flutter

Cross-platform mobile application development.
Linux
Linux

Primary environment for development and security testing. Comfortable with CLI and shell scripting.
Windows
Windows

Understanding of Windows architecture and Active Directory environments.
Git
Git

Version control using GitHub and GitLab workflows.

Experiences

1
IrraHub Co., Ltd.

Feb 2019 - Dec 2019

Yangon, Myanmar

IrraHub is a technology solutions company dedicated to bridging the gap between people and businesses through innovative digital platforms. Positioned as a comprehensive IT partner, IrraHub delivers scalable, modern software solutions tailored to meet the evolving needs of SMEs and enterprises across Southeast Asia.

Software Engineer

Feb 2019 - Dec 2019

Responsibilities:
  • Coordinated cross-disciplinary teams of 10+ members to deliver complex projects and utilizing at web applications and mobile applications resulting in a 20% reduction in project delivery time and app performance by 40%.
  • Collaborated with security teams to implement secure coding practices in React.js and Node.js, reducing the attack surface of web applications.

Education
European Internation University(EIU-Paris)
2023-2024
Bachelor of Science in Information Technology
CGPA: 3.3 out of 4
Seojeong University
2023-2025
Associate Degree of Business Administration
CGPA: 3.5 out of 4

Featured Writeups

Hero Image
UpDown - Writeup

Service Scan Nmap scan show that port 22(ssh) and 80(http) are open. PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack ttl 63 OpenSSH 8.2p1 Ubuntu 4ubuntu0.5 80/tcp open http syn-ack ttl 63 Apache httpd 2.4.41 ((Ubuntu)) |_http-server-header: Apache/2.4.41 (Ubuntu) | http-methods: |_ Supported Methods: HEAD POST OPTIONS |_http-title: Is my Website up ? Attacking HTTP(80) Just visiting the homepage I found it domain is http://siteisup.htb . So I add it to my hosts. Directory Fuzzing I started ferobuster and found some interesting directories.

Friday, January 9, 2026 | 3 minutes Read
Hero Image
Busqueda Writeup

Services Scan Nmap scan show that port 22(ssh) and 80(http) are open. PORT STATE SERVICE REASON VERSION 22/tcp open ssh syn-ack ttl 63 OpenSSH 8.9p1 Ubuntu 3ubuntu0.1 80/tcp open http syn-ack ttl 63 Apache httpd 2.4.52 |_http-title: Did not follow redirect to http://searcher.htb/ |_http-server-header: Apache/2.4.52 (Ubuntu) | http-methods: |_ Supported Methods: GET HEAD POST OPTIONS Add searcher.htb, that I found it on Nmap Logs to etc/hosts. Attacking HTTP(80) Scope: *.searcher.htb Banner Grabbing At footer of the page show that it use flask and searchor 2.4.0. By Googling, I found CVE-2023-43364 on searchor 2.4.0.

Thursday, January 8, 2026 | 2 minutes Read