eLearnSecurity Junior Penetration Tester
INE Security · 2025
Hands-on entry pentest cert — host/network enumeration, exploitation, and pivoting in a live lab exam.
verify credential┌─[ visitor@fletcher ]─[ ~ ]
└─$ whoami
fletcher
Cybersecurity Graduate Student · CTF player · offensive security
>
100
rooms completed
22
writeups
3
certifications
01.
profiles
/ live stats pulled from TryHackMe & Hack The Box 02.
writeups
/ latest 6 of 22 — type `cd writeups` or open the archive
Blackfield
Hack The Box
A hard Active Directory box exercising the full offensive AD workflow — SMB share enumeration, Kerberos pre-authentication attacks, BloodHound-driven ACL analysis, and a backup-operator privilege path to the domain's secret store. A thorough tour of chaining delegated directory permissions into domain compromise.
Administrator
Hack The Box
An Active Directory box starting from a foothold credential, exercising BloodHound-driven enumeration and a chain of ACL abuses — delegated password resets, targeted Kerberoasting, and DCSync — to walk outbound object-control rights up to full domain compromise.
Cicada
Hack The Box
A beginner-friendly Active Directory box covering core domain reconnaissance — SMB share enumeration, password spraying, LDAP and RID-based user discovery, and a backup-operator privilege path to the domain's secret store. A clean introduction to turning a low-privilege foothold into domain compromise.
Nibbles
Hack The Box
An easy Linux box that rewards methodical web enumeration — uncovering a hidden, vulnerable blogging CMS for a foothold, then escalating through a classic writable-script sudo misconfiguration. A solid primer on CMS exploitation and Linux sudo privilege escalation.
Jerry
Hack The Box
An easy Windows box centered on a misconfigured Apache Tomcat server — exercising default-credential checks and abusing the web application manager's deployment feature for code execution. A quick lesson in why exposed management interfaces are dangerous.
Active
Hack The Box
A beginner-friendly Active Directory box covering the domain-attack fundamentals: anonymous SMB enumeration, a legacy Group Policy Preferences credential exposure, and Kerberoasting — a clean introduction to chaining small AD misconfigurations into full domain compromise.
03.
projects
/ tooling I build when a workflow gets repetitivecontextTutor
AI tutoring wrapper that learns from a SKILL.md and your lecture transcripts to tutor in your professor's style, citing the source material.
HTMLJavaScriptDockerfile
EzRotate
★ 3PowerShell tool that auto-rotates local Windows account passwords on a schedule for NIST 800-63B compliance.
PowerShell
My-CTF-Challenges
Capture-the-flag challenges I've authored — sources, configs, and solution notes.
CTFDocker
04.
certifications
/ paper to back the practice 
CompTIA Security+
CompTIA · 2024
Foundational security cert covering threats, cryptography, IAM, and risk — the industry baseline.
verify credential
AWS Certified Cloud Practitioner
Amazon Web Services · 2024
Cloud fundamentals — core AWS services, the shared-responsibility model, billing, and security basics.
verify credential 05.
activity
/ latest from LinkedIn [2026-05-10] AI has changed the way people study. But most students are only scratching the surface of what's possible.The common workflow: record a lecture, paste the topic into an AI, get a generic summary. It works. Until you realize the AI's version… └─ read on linkedin [2026-04-14] Another top 500 finish in the National Cyber League Spring 2026 Individual Game! 🏆Placed 299th out of 6,976 competitors this season and I'm proud of the progress. Scored 2,740 out of 3,000 points, up ~150 from my last competition, with 95.… └─ read on linkedin [2026-03-07] I've recently taken a short break from my goal of spending a few hours a day doing TryHackMe. While I have learned a ton from TryHackMe so far and plan to continue it in the future, sometimes it's nice to change up the format and delve into… └─ read on linkedin
06.
about & contact
/ who's behind the promptSecurity enthusiast who goes by the handle fletcher.
Graduate cybersecurity student who spends entirely too much time on Hack The Box. I write up the machines I root, build tooling when a workflow gets repetitive, and chase the next certification. Mostly offensive security, with forensics and incident response close behind.