TryHackMe — Cybersecurity Hands-On Labs
Summary
Completed 86+ rooms spanning offensive security, blue team operations, networking, and cryptography on the TryHackMe platform.
About
Highly motivated Cybersecurity Analyst with hands-on experience in penetration testing, SOC operations, threat intelligence, and cloud security, developed through structured internships and independent lab work. Proven ability to identify critical vulnerabilities, conduct comprehensive malware analysis, and implement robust security policies, as demonstrated by exploiting SQL injection for unauthenticated admin takeover and mapping 169 indicators of compromise across 71 MITRE ATT&CK techniques. Adept at leveraging Azure and AWS for cloud-native infrastructure deployment and skilled in SIEM alert triage, PCAP analysis, and GRC frameworks, holding certifications in ISC2 CC and OPSWAT ICIP, with CompTIA Security+ in progress.
Work
Cyblack
|Cybersecurity Intern
→
Summary
Spearheaded advanced cybersecurity initiatives, including penetration testing, malware analysis, and cloud security deployments, to fortify digital infrastructures.
Highlights
Conducted a full-stack black-box penetration test on a simulated banking application (web, API, AI), identifying 10 vulnerabilities (medium-critical) including SQL injection for unauthenticated admin takeover, JWT forgery for privilege escalation, and 5 AI chatbot vulnerabilities.
Performed static and dynamic malware analysis on 3 live samples (PE32 loader, AsyncRAT, WannaCry), mapping 169 indicators of compromise across 71 MITRE ATT&CK techniques and producing a full incident report with remediation steps.
Deployed OpenCTI integrated with AlienVault OTX for structured cyber threat intelligence analysis, attributing threats and campaigns to nation-aligned APT groups.
Built a cloud security proof of concept using Azure Container Registry and Azure Kubernetes Service, managing container images and securing internal/external application access.
Developed an Information Security Policy aligned to NIST and industry best practice frameworks, applying policy development, compliance review, and structured report writing.
TechyJuant
|Cybersecurity Mentor
→
Summary
Guided cybersecurity students through foundational and intermediate concepts, fostering improved comprehension and problem-solving skills.
Highlights
Mentored cybersecurity students on foundational and intermediate concepts, simplifying complex topics to improve comprehension and analytical thinking.
Utilized practical examples and guided discussions to help learners bridge knowledge gaps and build confidence in approaching cybersecurity problems.
HSC Consults
|SOC Analyst Intern
→
Summary
Executed comprehensive log and PCAP analysis to detect advanced cyber threats and reconstruct attack timelines, enhancing incident response capabilities.
Highlights
Performed PCAP and log analysis to detect attacks including SQL injection, SSH abuse, reverse shells, and data exfiltration, improving incident detection accuracy.
Analyzed web server, SSH, auditd, kernel, and application logs in Splunk to reconstruct full attack timelines from initial access through to post-exploitation.
Correlated logs across firewall, web server, endpoint, and audit sources to confirm attacker objectives and determine the full scope of compromise.
Mapped adversary behaviors to MITRE ATT&CK and the Cyber Kill Chain, producing structured threat characterization reports.
Kebbi State University of Science and Technology
|IT Support — NYSC Peer Support Role
→
Summary
Provided comprehensive IT support, resolving technical issues and maintaining system functionality to ensure high user productivity.
Highlights
Delivered end-to-end IT support including OS troubleshooting, hardware diagnostics, system repair, and malware removal amongst Corp members.
Resolved OS crashes, BSOD errors, registry issues, driver faults, and hardware failures, maintaining system uptime and user productivity.
Cisco Networking Academy
|Networking and Cybersecurity Training
→
Summary
Completed rigorous training in networking and cybersecurity, mastering configuration, design, and analysis of network infrastructures.
Highlights
Configured routers and switches in Cisco Packet Tracer covering IP addressing, subnetting, static routing, and access control lists.
Designed and tested network topologies including LAN, WAN, VLAN, DHCP, and NAT; used Nmap and Wireshark for port scanning and traffic analysis.
Volunteer
ALX Africa
|Cybersecurity Volunteer
→
Summary
Provided academic and conceptual support to cybersecurity learners, enhancing their understanding of foundational security principles and frameworks.
Highlights
Supported learners in a cybersecurity cohort by clarifying foundational concepts including networking principles and basic security frameworks.
Provided one-on-one academic support to individuals struggling with course progression, helping improve their understanding and confidence.
Education
Federal University of Agriculture, Makurdi
→
B.Sc.
Food Science and Technology
Grade: 4.41 / 5.00
Courses
Transitioned into cybersecurity through self-directed learning, professional certifications, and structured internship experience.
Certificates
CompTIA Security+ (In Progress)
Issued By
CompTIA
Cisco Endpoint Security
Issued By
Cisco
Advent of Cyber
Issued By
TryHackMe
Cisco Networking Courses
Issued By
Cisco
ISC2 Certified in Cybersecurity (CC)
Issued By
ISC2
AIG Shields Up: Cybersecurity Virtual Experience
Issued By
AIG
Datacom Cybersecurity Job Simulation
Issued By
Datacom
NYSC SAED ICT Technical Training (Overall Best)
Issued By
NYSC SAED
TechyJaunt Cybersecurity Certification
Issued By
TechyJaunt
OPSWAT ICIP Critical Infrastructure Protection
Issued By
OPSWAT
Digital Nigeria Cybersecurity Assessment
Skills
Core Competencies
Penetration Testing and Vulnerability Assessment, SOC Monitoring and Alert Triage, Cyber Threat Intelligence (CTI), Prompt Injection and AI Security Testing, SIEM Log Analysis (Splunk), Incident Response and Investigation, Cloud Security (Azure ACR, AKS and AWS), GRC and Information Security Policy, MITRE ATT&CK and Kill Chain Mapping, PCAP and Network Traffic Analysis, Phishing Analysis and Email Security, Identity and Access Management, Role-Based Access Control (RBAC) Implementation, Threat Detection and Prevention, Application Security, Insider Threat Mitigation.
Security and Analysis
OpenCTI, AlienVault OTX, Wireshark, Splunk, Nmap, Metasploit, Nikto, Tines, API Security Testing, Threat Modeling.
Security Engineering
API Security and Webhook Validation (HMAC-SHA256), Role-Based Access Control (RBAC), Authentication and Authorization Systems, Audit Logging and Monitoring, Transaction Integrity and Race Condition Mitigation.
Cloud and Containers
Azure Container Registry (ACR), Azure Kubernetes Service (AKS), Docker, Docker Compose, Amazon Web Service (AWS).
Platforms and Systems
Kali Linux, Windows OS, Linux, Virtual Machines.
Networking
TCP/IP, VLANs, DHCP, NAT, Routing, Switching, Cisco Packet Tracer.
GRC and Policy
Information Security Policy Development, Risk Assessment, Compliance Review.
Programming
Python, Bash, PowerShell, JavaScript (Foundational).
Other Tools
GitHub, VS Code, TryHackMe, PortSwigger Academy Labs.
Projects
Log Analysis and Attack Detection — Splunk
Summary
Ingested and analysed security logs in Splunk to detect attack patterns, investigate anomalies, and build queries for threat visibility across system events.
Web Application and AI Chatbot Penetration Testing — VulnBank
Summary
Conducted a full-stack black-box penetration test against a simulated banking application (web, REST API, and AI chatbot layers), identifying 10 vulnerabilities (Medium-Critical, max CVSS 9.8).
SIM Swap Fraud Detection Platform — Phantex (3MTT Knowledge Showcase, Airtel Nigeria & NITDA — Best Submission)
Summary
Engineered a real-time fraud detection system to mitigate SIM swap-driven account takeover.
Malware Analysis — Multi-Sample Static & Dynamic Incident Investigation
Summary
Performed static and dynamic analysis of 3 malware samples (a PE32 loader/dropper, an AsyncRAT/DCRat-family .NET RAT, and a WannaCry ransomware component).
Azure Cloud Security — ACR and AKS Container Deployment
Summary
Deployed a containerised application using Azure Container Registry and Azure Kubernetes Service.
PrestaShop Two-Tier Deployment on AWS
Summary
Deployed PrestaShop 9.0.2 on AWS at zero cost using a two-tier architecture.
Cyber Threat Intelligence Platform — OpenCTI and AlienVault OTX
Summary
Deployed and integrated OpenCTI with AlienVault OTX via Docker to conduct structured CTI analysis.
Python Login and Credential Attack Simulation
Summary
Built Python scripts simulating brute-force and credential stuffing attacks.
Phishing Incident Response Automation - Tines
Summary
Built a no-code automation workflow in Tines that ingests suspicious emails, extracts embedded URLs, scans each link for malicious indicators, and automatically generates an incident report on detection.
Information Security Policy Development — GRC Sprint (Cyblack)
Summary
Authored an organisation-level Information Security Policy aligned to industry frameworks.
Human Factor Security Awareness Program — VIVIDA Reels (Cyblack)
Summary
Designed and produced original whiteboard explainer video content across 6 risk domains including insider threats, patch management, and access controls.
Kali Linux Penetration Testing Lab — Metasploitable 2
Summary
Conducted hands-on exploitation exercises against a deliberately vulnerable target using Kali Linux tools including Metasploit, Nmap, and Nikto.