Subeg Suwal (glutto.n)

#

Email: [email protected] - GitHub: glutton-su - LinkedIn: Subeg Suwal

Professional Summary

#

Cybersecurity student focused on penetration testing, exploit development, and CTF challenges. Strong hands-on experience with network reconnaissance, web application testing, Active Directory attacks, and exploit development through coursework, personal projects, and competitive CTF participation.

Education

#

• BSc. (Hons) Cybersecurity and Ethical Hacking — Softwarica College of IT and E-Commerce (ongoing)

Technical Skills

#

• Fundamentals: Linux (Debian/Ubuntu), Bash, Git, Docker, TCP/IP, SSH, systemd
• Recon & Scanning: rustscan, nmap, ffuf, gobuster, feroxbuster
• Web Security: SQLi, SSRF, SSTI, LFI, JWT abuse, API security
• Active Directory: BloodHound, Kerberoasting, RBCD, ADCS abuse, DPAPI
• Exploit Development: Buffer overflows, ROP, format strings, pwntools
• Pivoting & Tunneling: Chisel, Ligolo-ng
• Languages: Python (scripting & tooling), JavaScript, C, HTML, CSS

Certifications

#

• eJPT — eLearnSecurity Junior Penetration Tester (ID: 177314916)
• CCPP — Certified C++ Practitioner Professional
• CCEP — Certified Cybersecurity Educator Professional
• CRTOM — Certified Red Team Operations Management
• CTIGA — Certified Threat Intelligence & Governance Analyst
• ASCP — API Security Certified Professional (in progress)
• CPTS — Certified Penetration Testing Specialist (planned)

Projects & Experience

#

• Active CTF competitor — Member of Team 50 Shades of Hacking and former member of Team NCA@Nepal; placed 11th at VishwaCTF 2025.
• Personal & course projects hosted on GitHub (examples: SIEM-P2-CW1, backdoor, DevSpace, C_program_project).
• Hands-on practice in web app pentesting, AD assessments, and exploit development through labs and self-directed projects.

Interests

#

• Offensive security, exploit development, threat hunting, CTFs, tooling and automation.

References

#

Available on request.