blog.evilhaxxor.no

Neon portfolio / system status: online

HACK THE WORLD

Hey, welcome. This blog is mostly notes to myself that turned into posts. You’ll find security stuff, lab write-ups, Linux tinkering, and the occasional rant when things don’t work as expected. If it’s useful to someone else too, even better.

View blog Contact
signal: stable / 1.21 GW

About

I am a penetration tester with Helse og KommuneCERT, specializing in hands-on offensive security assessments of enterprise environments. My work focuses on identifying real-world attack paths, chaining vulnerabilities, and demonstrating practical impact across on-premises and hybrid infrastructures. I have conducted a large number of penetration tests, ranging from external and internal network assessments to Active Directory-focused engagements.

Technically, I have strong experience with Active Directory security, including privilege escalation paths, Kerberos abuse, credential harvesting, delegation misconfigurations, and post-exploitation tradecraft. I regularly work with both manual techniques and tooling to enumerate, exploit, and validate security weaknesses in complex Windows environments. Linux is my daily driver, and I am comfortable operating at the command line, writing custom scripts, and adapting tools to specific engagement needs.

I hold multiple certifications, including PJPT, PNPT, PT1, MCP Server 2012(old), MCTS Windows 10(old), and ITIL v3, and I am currently pursuing the Certified Penetration Testing Specialist (CPTS) certification. In parallel, I completed formal coursework in Cybersecurity & Ethical Hacking and Python Programming at NTNU, achieving grade A in both. Python is used regularly for scripting, automation, and proof-of-concept development during engagements.

My background includes over a decade of experience in networking and systems administration, which strongly informs my offensive approach. I prioritize understanding how environments are actually built and operated, allowing me to test them realistically rather than relying on checklist-based assessments.

Outside of work, I am a Linux enthusiast, hunter, gamer, and father. I value continuous learning, practical skill development, and contributing to stronger defensive outcomes by clearly communicating risk and remediation.

Penetration testing Active Directory Python scripting Linux

Blog

Drafts and posts live here. Sign in to publish, or browse the public feed below.

Loading posts...

Connect Supabase to populate this feed.

Publisher Access

This area is backed by Supabase Auth.
If you want to hack it feel free,
but please dont brick the page Leave a Post if you do :)

Status: signed out

New post

Create a new draft and publish it to the feed.

Contact

Want to collaborate? Drop a line, connect on GitHub, or jump to the blog for updates.

Email GitHub Read the blog