Hello, I'm
Vladimir Cuc
OSCP+ & Security+ Certified
Security Engineer & Penetration Tester
I'm passionate about cybersecurity, from offensive security and penetration testing to security operations and cloud infrastructure. I focus on Active Directory attack paths, SIEM-driven detection, and building tooling that strengthens organizational defenses.
Latest Security Insights
Explore my OSCP-style walkthroughs covering enumeration, exploitation, lateral movement, and privilege escalation with clear methodology.
Read Blog Posts
About Me
My path into cybersecurity started with a simple curiosity about how systems break, and how attackers think. Over time, that curiosity became a structured approach to understanding real adversarial behavior, strengthening defenses, and bridging the gap between offensive testing and security engineering.
My work spans offensive security, security operations, and cloud infrastructure. I design realistic attack scenarios and map internal attack paths, but I also tune SIEM detections, investigate alerts, and harden identity and access controls. I enjoy analyzing infrastructure from both sides, finding where organizations fail and building the tooling to fix it.
Contact Information
Education
Bachelor of Science in Computer Science
Florida Southern College
2022 - 2025 • GPA: 3.8
Certifications
Skills & Technologies
Offensive security, security operations, and cloudA snapshot of the technologies I use across penetration testing, security operations, cloud infrastructure, and automation
Offensive Security
Security Operations
Cloud & Identity
Programming & Tooling
For full skill list download the resume
Professional Experience
A timeline shaped by security, engineering, and real-world problem-solvingOffensive security and engineering experience in one place
Help Desk Support Technician
Florida Southern College
Key Responsibilities
- ▸Tier-1 support for identity and access issues, resolving account lockouts and MFA problems for 100+ users.Provided Tier-1 support for identity and access issues, resolving account lockouts, MFA problems, and password resets for 100+ students and faculty.
- ▸Active Directory user management and secure authentication workflows.Performed Active Directory user management, permission adjustments, and secure authentication workflows, reinforcing enterprise identity-security fundamentals.
- ▸Troubleshot Windows endpoints, RDP connectivity, and school applications.Troubleshot Windows endpoints, RDP connectivity, school applications, and license management, developing a methodical and security-minded approach to problem solving.
- ▸Communicated technical steps clearly to support safe campus access.Communicated complex technical steps in a clear, user-friendly way, strengthening team efficiency and supporting safe access across campus systems.
Cybersecurity Intern
Publix Supermarkets Corporate
Key Responsibilities
- ▸Enhanced PowerShell domain-monitoring tool, increasing fraudulent domain detection by 50%.Enhanced a PowerShell-based domain-monitoring tool with SSL/WHOIS fingerprint analysis, increasing detection of fraudulent Publix domains by 50%.
- ▸Assisted red-team engineers with AD enumeration and privilege-escalation testing.Assisted senior red-team engineers with Active Directory enumeration, Kerberoasting validation, and Windows privilege-escalation testing during internal assessments.
- ▸Triaged 200+ alerts in Microsoft Defender using Splunk queries to identify detection gaps.Triaged and investigated 200+ alerts in Microsoft Defender and ServiceNow, using focused Splunk queries to reduce noise, speed up triage, and identify detection gaps.
- ▸Performed forensic E01 imaging and tuned SIEM thresholds for better detection accuracy.Performed forensic E01 endpoint imaging and tuned SIEM alert thresholds to sharpen detection accuracy and support both SOC workflows and offensive test coverage.
Software Engineer Intern
Vertical Digital (Eleco Group)
- ▸Designed secure RESTful APIs, improving data-flow efficiency by 40%.Designed and implemented secure, scalable RESTful APIs, improving data-flow efficiency by 40% and reinforcing backend reliability against misuse.
- ▸Optimized MongoDB operations, reducing query response times by 35%.Optimized large-dataset operations in MongoDB, reducing query response times by 35% and strengthening system performance under load.
- ▸Developed payment-processing engine, simulating 10,000+ transactions.Developed and rigorously tested a custom payment-processing engine, simulating 10,000+ transactions to validate data integrity and uncover edge-case failures.
- ▸Worked in Linux environments, supporting offensive-security tooling automation.Worked daily in Linux environments, leveraging scripting and debugging skills that later supported my offensive-security work and tooling automation.
Projects
Open-source security tools and automation scripts
RaptorRecon
Bash framework for fast OSCP-style recon across multiple targets.Bash framework for fast OSCP-style recon across multiple targets. Orchestrates RustScan, Nmap, web enum, SMB/FTP/RPC probes, and drops everything into clean, timestamped per-host folders.
View on GitHub
DragonMap
Bash script for credentialed Active Directory enumeration in assumed-breach scenarios.Bash script for credentialed Active Directory enumeration in assumed-breach scenarios. Performs high-signal SMB/RPC/LDAP/DNS recon using valid creds and saves organized, timestamped output for each target.
View on GitHubFeatured Blog Posts
Walkthroughs, notes, and lessons learned from penetration testing, security research, and hands-on labsPenetration testing walkthroughs and security write-ups
Let's Connect
Whether it's penetration testing, security engineering, cloud infrastructure, or building security tooling, I'm always open to interesting problems and collaborations.