Jun 18, 2026
Certifications
My certifications reflect a mix of practical penetration testing, security fundamentals, infrastructure security, and hands-on methodology.
I value certifications most when they require more than memorization. The certifications below represent practical experience with enumeration, exploitation, Active Directory, privilege escalation, pivoting, reporting, and defensive thinking.
Practical Penetration Testing
HTB Certified Penetration Testing Specialist
Issuer: Hack The Box Earned: June 2026 Status: Active
The HTB Certified Penetration Testing Specialist is a hands-on practical certification focused on end-to-end penetration testing methodology.
This certification validated my ability to perform:
- External and internal enumeration
- Web application testing
- Linux privilege escalation
- Windows privilege escalation
- Active Directory enumeration and exploitation
- Credential discovery and abuse
- Lateral movement
- Network pivoting
- Multi-stage attack path development
- Evidence collection
- Professional penetration test reporting
CPTS reinforced that successful penetration testing is not just about knowing tools. It requires patience, troubleshooting, documentation, and the ability to chain findings together into a clear attack path.
Related writing:
Practical Network Penetration Tester
Issuer: TCM Security Earned: February 2026 Status: Active
The Practical Network Penetration Tester certification is a hands-on penetration testing certification focused on realistic enterprise network compromise.
This certification validated my ability to perform:
- External reconnaissance
- Initial access discovery
- Internal enumeration
- Active Directory attack path analysis
- Privilege escalation
- Lateral movement
- Network pivoting
- Credential attacks
- Risk documentation
- Remediation-focused reporting
PNPT helped reinforce the importance of treating an assessment like a real engagement rather than a CTF. Methodology, evidence, and clear reporting mattered just as much as technical execution.
Related writing:
Foundational Security
CompTIA Security+
Issuer: CompTIA Earned: March 2025 Status: Active / CE
Security+ provided a broad foundation across core cybersecurity concepts, including:
- Threats, attacks, and vulnerabilities
- Security architecture
- Identity and access management
- Network security
- Risk management
- Security operations
- Incident response fundamentals
- Governance and compliance concepts
While my later certifications became more hands-on and offensive-security focused, Security+ provided the baseline vocabulary and conceptual foundation that supports both defensive and offensive work.
Current Learning Focus
I am continuing to build deeper skills in:
- Active Directory security
- Internal penetration testing
- Defensive engineering
- Detection engineering
- Network security
- PKI and certificate-based authentication
- Cloud and hybrid identity security
- Professional security reporting
Certifications are useful milestones, but the real goal is practical skill: building labs, breaking misconfigurations, documenting findings, and understanding how to defend real environments.
Summary
CPTS Practical penetration testing, AD exploitation, pivoting, reporting
PNPT Realistic enterprise network penetration testing and reporting
Security+ Foundational cybersecurity knowledge