Offensive Security • Penetration Testing • Vulnerability Research
I’m 0xM4IX, a penetration tester from Uzbekistan and a former software engineer with a primary focus on offensive security, Active Directory, web application security, and internal network assessments.
My background in software engineering has given me a strong understanding of how applications are built, while my current focus is on identifying, analyzing, and exploiting security weaknesses through hands-on practice and continuous research.
This website serves as my personal knowledge base, where I document penetration testing techniques, publish machine writeups, share vulnerability research, and record notes from my ongoing learning journey. Every article reflects practical work completed in laboratory environments and is intended to help both myself and others in the offensive security community.
Certifications
- Certified Penetration Testing Specialist (CPTS)
- eLearnSecurity Junior Penetration Tester (eJPT)
Currently preparing for the Offensive Security Certified Professional (OSCP) certification.
What You’ll Find Here
This blog includes:
- Penetration testing writeups
- Active Directory research
- Web application security notes
- Vulnerability research
- Tools, tips, and technical references
- Cheatsheets and learning resources
“The best way to learn offensive security is through continuous practice, disciplined research, and sharing knowledge with the community.”