How I got my first CVE published โ CVE-2024โ39248
It first started with a little exploration of a CMS software titled SimpCMS 0.1, which had its last release in October 2010 on SourceForge.
Jason Jacobs
Cybersecurity Trainer @J77 Cyber
Jason is a Cybersecurity Engineer and Dark Web Researcher who specializes in Offensive Security, Incident Response, and Open Source Intelligence for government and corporate cyber situations.
About me
Currently pursuing an MSc. and conducting research into Open-Source Intelligence and Dark Web operations, I stay at the forefront of emerging cybersecurity trends and threats.
Complementing my academic background, I hold the CompTIA Security+ and INE Junior Penetration Tester (eJPT) and INE Certified Professional Penetration Tester (eCPPT) certifications, validating my expertise in cybersecurity principles, penetration testing, and cybersecurity best practices.
If you're curious to dive deeper into my work, you can follow me:
Skills
Explore the proficiencies that enable me to excel in cybersecurity and software development.
Vulnerability Assessment and Penetration Testing (VAPT)
Experienced in conducting comprehensive cybersecurity assessments to identify and mitigate potential threats.
Open-Source Intelligence
Skilled in gathering and analyzing data from various sources to identify emerging cybersecurity threats.
WordPress Security Audits
Proficient in assessing and enhancing the security of WordPress-based websites and applications.
Network Device Security
Experienced in reviewing and optimizing security configurations for network devices, including Fortinet products.
Office 365 Security Configuration Audits
Capable of assessing and improving security posture within Office 365 environments.
Amazon Web Services (AWS)
Experienced with EC2, Route 53, and AWS IAM services for cloud-based solutions.
LAMP Stack
Proficient in developing and securing applications using Linux, Apache, MySQL, and PHP.
Linux Administration
Skilled in managing and securing Linux-based systems and environments.
Cybersecurity Best Practices
Well-versed in implementing and maintaining strong cybersecurity measures across various platforms and systems.
Find out more content in my Blog
View all posts ยป
A Guide to Subdomain Enumeration - From Passive to Active Methods
Learn comprehensive techniques for subdomain enumeration, covering both passive and active approaches for penetration testing scenarios.
FAQs
Frequently Asked Questions
Learn more about my mentoring services and how I can help you advance in your cybersecurity career.
Do you offer mock interviews?
Yes! I provide 60-minute mock interview sessions via video call. During these sessions, I simulate real cybersecurity interview scenarios and provide detailed feedback to help you improve your interview performance.
Can I get career guidance?
Absolutely! I offer 30-minute video sessions focused on career guidance where we can discuss your cybersecurity career path, potential opportunities, and create an action plan for your professional growth.
Do you offer resume reviews?
Yes, I provide comprehensive 120-minute resume review sessions via video call. We'll go through your resume in detail, optimize it for cybersecurity positions, and ensure it effectively highlights your skills and experiences.
What is included in the quick chat option?
The quick chat is a 30-minute video session perfect for addressing specific questions or getting quick advice about cybersecurity topics, career decisions, or technical challenges.
Do you provide 1:1 mentorship?
Yes, I offer 120-minute 1:1 mentorship sessions where we can deep dive into your specific needs, whether it's technical skills development, career planning, or preparing for cybersecurity roles.
What does the cybersecurity interview prep include?
My 120-minute cybersecurity interview prep sessions cover technical concepts, common security scenarios, and practical tips to help you succeed in your interviews. We'll focus on both technical and behavioral aspects of cybersecurity interviews.