Hello, I'm
Vladimir Cuc
OSCP+ & Security+ Certified
Cybersecurity Enthusiast
I'm passionate about cybersecurity, especially offensive security. I focus on penetration testing, Active Directory attack paths, and automating red-team workflows to strengthen organizational defenses.
Latest Penetration Testing Insights
Explore my OSCP-style walkthroughs covering enumeration, exploitation, lateral movement, and privilege escalation with clear methodology.
Read Blog Posts
About Me
My path into cybersecurity started with a simple curiosity about how systems break — and how attackers think. Over time, that curiosity became a structured approach to understanding real adversarial behavior and reproducing it in controlled environments.
Most of my work revolves around designing realistic attack scenarios, mapping internal attack paths, and learning how modern organizations actually fail — not theoretically, but in practice. I enjoy deconstructing security assumptions, analyzing infrastructure from an attacker's perspective, and building efficient tooling to automate parts of the offensive workflow.
Contact Information
Education
Bachelor of Science in Computer Science
Florida Southern College
2022 - 2025 • GPA: 3.8
Certifications
Skills & Technologies
Core offensive security tools and techniquesA snapshot of the technologies and offensive techniques I use across real-world assessments and red-team workflows
Offensive Techniques
Tools
Programming/Scripting
For full skill list download the resume
Professional Experience
A timeline shaped by security, engineering, and real-world problem-solvingOffensive security and engineering experience in one place
Help Desk Support Technician
Florida Southern College
Key Responsibilities
- ▸Tier-1 support for identity and access issues, resolving account lockouts and MFA problems for 100+ users.Provided Tier-1 support for identity and access issues, resolving account lockouts, MFA problems, and password resets for 100+ students and faculty.
- ▸Active Directory user management and secure authentication workflows.Performed Active Directory user management, permission adjustments, and secure authentication workflows, reinforcing enterprise identity-security fundamentals.
- ▸Troubleshot Windows endpoints, RDP connectivity, and school applications.Troubleshot Windows endpoints, RDP connectivity, school applications, and license management, developing a methodical and security-minded approach to problem solving.
- ▸Communicated technical steps clearly to support safe campus access.Communicated complex technical steps in a clear, user-friendly way, strengthening team efficiency and supporting safe access across campus systems.
Cybersecurity Intern
Publix Supermarkets Corporate
Key Responsibilities
- ▸Enhanced PowerShell domain-monitoring tool, increasing fraudulent domain detection by 50%.Enhanced a PowerShell-based domain-monitoring tool with SSL/WHOIS fingerprint analysis, increasing detection of fraudulent Publix domains by 50%.
- ▸Assisted red-team engineers with AD enumeration and privilege-escalation testing.Assisted senior red-team engineers with Active Directory enumeration, Kerberoasting validation, and Windows privilege-escalation testing during internal assessments.
- ▸Triaged 200+ alerts in Microsoft Defender using Splunk queries to identify detection gaps.Triaged and investigated 200+ alerts in Microsoft Defender and ServiceNow, using focused Splunk queries to reduce noise, speed up triage, and identify detection gaps.
- ▸Performed forensic E01 imaging and tuned SIEM thresholds for better detection accuracy.Performed forensic E01 endpoint imaging and tuned SIEM alert thresholds to sharpen detection accuracy and support both SOC workflows and offensive test coverage.
Software Engineer Intern
Vertical Digital (Eleco Group)
- ▸Designed secure RESTful APIs, improving data-flow efficiency by 40%.Designed and implemented secure, scalable RESTful APIs, improving data-flow efficiency by 40% and reinforcing backend reliability against misuse.
- ▸Optimized MongoDB operations, reducing query response times by 35%.Optimized large-dataset operations in MongoDB, reducing query response times by 35% and strengthening system performance under load.
- ▸Developed payment-processing engine, simulating 10,000+ transactions.Developed and rigorously tested a custom payment-processing engine, simulating 10,000+ transactions to validate data integrity and uncover edge-case failures.
- ▸Worked in Linux environments, supporting offensive-security tooling automation.Worked daily in Linux environments, leveraging scripting and debugging skills that later supported my offensive-security work and tooling automation.
Projects
Open-source security tools and automation scripts
RaptorRecon
Bash framework for fast OSCP-style recon across multiple targets.Bash framework for fast OSCP-style recon across multiple targets. Orchestrates RustScan, Nmap, web enum, SMB/FTP/RPC probes, and drops everything into clean, timestamped per-host folders.
View on GitHub
DragonMap
Bash script for credentialed Active Directory enumeration in assumed-breach scenarios.Bash script for credentialed Active Directory enumeration in assumed-breach scenarios. Performs high-signal SMB/RPC/LDAP/DNS recon using valid creds and saves organized, timestamped output for each target.
View on GitHubFeatured Blog Posts
Walkthroughs, notes, and lessons learned while breaking into boxes and sharpening my red-team mindsetPenetration testing walkthroughs and OSCP-style write-ups
Let's Connect
Whether it's red-team work, lab write-ups, or building tooling for offensive security, I'm always open to interesting problems and collaborations.