▶ ECE Graduate · Penetration Tester · HTB Pro

Hack.
Exploit.
Sell.

Cybersecurity research, writeups & PoCs — plus tech services and a gear shop for the security community. All from one platform.

Penetration Testing HTB Writeups Tech Services Gear Shop
▶ Read Writeups 🛒 Visit Shop Services →
0
Writeups
0
HTB Pwned
0
CVEs
#0
Global Rank
LIVE
// Latest Root
uid=0(root)
Spectre · HTB Insane · Mar 16
🔴
Cybersecurity Services
Penetration testing, security audits, staff training — for SMEs, SACCOs, schools and businesses.
Pentest · Audit · Training
🔵
Tech Services
Website design, CCTV, WiFi setup, Google Business, IT support and computer repair.
Websites · CCTV · IT Support
🟡
Shop — Gear & Hardware
Laptops, Flipper Zero, pentest tools, networking gear and KnightSec merch. M-Pesa accepted.
Laptops · Flipper Zero · Tools
// Writeups

Latest Research & Walkthroughs

Technical breakdowns of CTF challenges, HTB machines and real-world vulnerabilities.

PWN Buffer Overflow HackTheBox Mar 14, 2026
CVE-2024-9291 — RCE via Heap Spray in OpenSSH Pre-Auth Handler

Full exploitation chain: ASLR bypass to stable shellcode via custom glibc heap spray on a hardened Debian target. Root in 4 hours — documented step by step.

Read Full Writeup →
Pivoting Segmented Networks — Chisel + Proxychains
NetworkPivotLabsMar 12
Blind NoSQL Injection — MongoDB REST API Auth Bypass
WebCTFtimeMar 9
Reversing Obfuscated Golang Binary with Ghidra
Rev EngDEFCONMar 6
Breaking RSA-CRT — Bellcore Fault Injection Attack
CryptoHARDMar 1
// Blog & News

Cybersec Intel, PoCs & Research

Weekly CVE breakdowns, threat intel, PoC exploits and security research that actually matters.

// CVE Breakdown
CVE-2025-1837: Spring Boot RCE — PoC & Patch Walkthrough

Active exploitation in the wild. We reproduce the PoC in a lab and walk through mitigation.

Mar 15, 2026Read →
// Research
Detection Rule for AS-REP Roasting in Elastic SIEM

Building a Sigma rule that catches AS-REP Roasting against Active Directory. Tested on Forest and Sauna HTB machines.

Mar 11, 2026Read →
// Tools
Ligolo-ng vs Chisel: Which Wins for CPTS Exams?

Head-to-head across performance, stealth, and ease of use in real pentest scenarios.

Mar 7, 2026Read →
// News
Most Critical CVEs — Mar W2 2026 Roundup

CVSS scores, affected products, patch status and exploitation probability for the week's real threats.

Mar 10, 2026Read →
// PoC
CVE-2024-3400: PAN-OS Command Injection Lab

Full PoC reproduction of the Palo Alto GlobalProtect vulnerability. Script on GitHub.

Mar 3, 2026Read →
// Opinion
Why CPTS Is Harder Than OSCP (And Worth It)

The report requirement changes everything — and that's exactly why real pentest teams respect it more.

Feb 28, 2026Read →
// Services — Cybersecurity

Security Services

Professional penetration testing, security audits and awareness training for businesses across Kenya.

🔴
Digital Security Health Check
Network scan, WiFi assessment, password policy review, phishing check — with a full written report.
KSH 15,000
⏱ 1–2 days delivery
📱 Book on WhatsApp
🛡️
SME Security Audit
Full audit: email security, data protection compliance, vulnerability assessment, social engineering test + staff training.
KSH 30,000
⏱ 3–5 days delivery
📱 Book on WhatsApp
🔄
Monthly Security Retainer
Monthly scan, incident response support, staff updates, priority WhatsApp support. Peace of mind, ongoing.
KSH 10,000/month
⏱ Ongoing
📱 Book on WhatsApp
🎓
Staff Awareness Workshop
3-hour session: phishing, password hygiene, WhatsApp scams, safe browsing, Kenya Data Protection Act basics.
KSH 15,000
⏱ Half day · up to 30 staff
📱 Book on WhatsApp
🌐
Web Application Pentest
Full OWASP Top 10 assessment on your web app or API. Detailed report with CVSS ratings and remediation steps.
KSH 25,000 – 50,000
⏱ 5–7 days
📱 Book on WhatsApp
📡
IoT / Device Security Review
Hardware and firmware security assessment for connected devices. ECE-grade — your hardware, properly audited.
Custom Quote
⏱ Scope-dependent
📱 Enquire Now
// Services — Tech

Tech Services

Websites, Google Business, CCTV, WiFi networks, IT support and computer repair for local businesses and homes.

🌐
Website Design
Professional 5-page business site — mobile ready, fast, SEO-optimised.
📍
Google Business
Get found on Google Maps. Setup, photos, reviews, optimisation.
📷
CCTV Setup
Camera installation, DVR/NVR config, remote viewing setup for homes and offices.
📶
WiFi Networks
Fast, secure WiFi setup for homes, shops, hotels and offices.
ServicePrice (KSH)DeliveryBook
Basic business website (5 pages)15,000 – 25,0003–5 daysWhatsApp →
Google Business Profile setup + optimization3,5001–2 hoursWhatsApp →
Domain + hosting setup + email5,0001 dayWhatsApp →
CCTV installation consultation + setup8,000 – 15,0001 dayWhatsApp →
WiFi network setup (homes, offices)5,000 – 10,000Half dayWhatsApp →
IT support retainer (monthly)5,000 – 8,000/moOngoingWhatsApp →
Social media page setup + branding4,0001 dayWhatsApp →
Computer repair / maintenance2,000 – 4,000HoursWhatsApp →
// Shop

Gear & Hardware

Pentest tools, refurbished laptops, networking gear and KnightSec merch. Ships from Kenya. M-Pesa accepted.

HOT Flipper Zero
// PENTEST TOOLS
Flipper Zero
Multi-tool for pentesters. Sub-GHz, NFC, IR, iButton, BadUSB. Barely available locally.
KSH 28,000 – 35,000
📱 Enquire on WhatsApp
IN STOCK Laptop
// LAPTOPS
ThinkPad X/T Series (Refurb)
i5/i7 · 8–16GB RAM · 256–512GB SSD · Linux-ready · tested & cleaned.
KSH 18,000 – 45,000
📱 Enquire on WhatsApp
WiFi Adapter
// PENTEST TOOLS
Alfa WiFi Adapter (AWUS036ACH)
Dual-band · monitor mode · packet injection · Kali Linux compatible.
KSH 3,500 – 5,500
📱 Enquire on WhatsApp
COMING SOON Raspberry Pi
// HARDWARE
Raspberry Pi 4 Kits
4GB/8GB · with case, power supply, SD card preloaded with Kali/Raspbian.
KSH 7,500 – 12,000
📱 Notify Me
COMING SOON
USB Ducky
// PENTEST TOOLS
USB Rubber Ducky
HID attack tool · custom payload injection · Hak5 original · ships in 5–7 days.
KSH 4,000 – 6,000
📱 Enquire on WhatsApp
POPULAR CCTV
// NETWORKING
CCTV Camera Bundles
2MP / 4MP IP cameras · NVR kits · night vision · remote viewing. Installation available.
KSH 3,500 – 15,000
📱 Enquire on WhatsApp
Switch
// NETWORKING
TP-Link Switches + PoE Gear
5/8/16 port managed & unmanaged · PoE options for CCTV and VoIP setups.
KSH 4,000 – 18,000
📱 Enquire on WhatsApp
NEW Merch
// MERCH
KnightSec Merch
Hoodies, t-shirts, stickers, mugs — KnightSec branded. Limited drops only.
KSH 800 – 3,500
📱 Enquire on WhatsApp
📲
M-Pesa accepted · Ships from Kenya · 7-day return policy · WhatsApp: +254 7XX XXX XXX
// About

Who's Behind KnightSec

Profile
0xDoomsKnight
Penetration Tester · ECE Graduate
CJCA — May 2026 CPTS — Dec 2026 HTB Pro Hacker
🧩 HackTheBox Profile 💻 GitHub 💼 LinkedIn 🐦 Twitter / X

ECE graduate turned full-time penetration tester. I build things, break things, and document both. My hardware background gives me an edge in low-level exploitation, network security and IoT/firmware pentesting — areas most security professionals don't touch.

Running KnightSec as a cybersecurity and tech services platform serving SMEs, SACCOs and schools upcountry. Grinding toward CJCA (May 2026) and CPTS (December 2026). Every writeup here is real. No filler.

// Technical Skills
Network Pentesting82%
Web Application Security68%
Binary Exploitation / PWN74%
Active Directory Attacks61%
IoT / Firmware Security79%
// Certifications
🎯
CJCA
// In Progress — May 2026
🏆
CPTS
// In Progress — Dec 2026
⚔️
HTB Pro Hacker
// Active
🎓
ECE Graduate
// Awarded
// HTB Progress

Recent Machines

Spectre
InsaneAD
// Windows · Released Mar 16
IN PROGRESS
Browsed
MediumWeb
// Linux · Retired
PWNED ✓
Forest
EasyAD
// Windows · Retired
PWNED ✓
Mr Robot CTF
MediumWeb
// Linux · CTF
PWNED ✓
// HackTheBox
Pro Hacker
4,820 pts · Top 12%
// TryHackMe
Level 9
Active streak 🔥
// PortSwigger
31 / 45
Practitioner labs
// CTFtime
Top 5%
312 challenges solved
// Available for Work & Enquiries

Let's Work
Together

Open to remote pentest roles, freelance security audits, tech services and product enquiries. Based in Kenya — working globally.

🔴
Security Services
Pentest, security audit, staff training, incident response.
🔵
Tech Services
Website, CCTV, WiFi, Google Business, IT support.
🟡
Shop / Products
Laptops, Flipper Zero, pentest gear, networking hardware.
📧 Email Me 📱 WhatsApp Download CV →