Richard Gabai

Details

Education: Per Scholas Newark, Cybersecurity Program CySA+

Experience: Penetration testing, Ethical Hacking Lab, August 2024 to September 2024.
• Installed and configured Kali Linux on various platforms (Windows, Mac, Linux) and set up virtual machines for penetration testing environments.
• Conducted wireless network attacks, including packet sniffing, WEP/WPA/WPA2 cracking, ARP poisoning, and MITM (Man-In-The-Middle) attacks using Bettercap.
• Utilized Wireshark to capture and analyze network traffic, including password extraction and packet dissection.
• Performed server-side and client-side attacks using Metasploit and Nexpose, identifying vulnerabilities and generating comprehensive reports.
• Exploited SQL injection and XSS vulnerabilities to access sensitive data and gain control over web servers, while also learning secure coding practices.
• Created custom backdoors, payloads, and conducted social engineering attacks, bypassing antivirus software to gain remote access to target systems.
Microsoft Azure-900 Cloud Deployment Lab, July 2024 to September 2024
• Developed a Virtual Network, VMs, Network Security, Containers, Kubernetes.
• Created a basic Azure environment including Load Balancer, Web App, Storage, Key Vault, SQL Database, Databricks, and App Service Plan.
• Set up a Honeypot, implemented Sentinel Security monitoring automation.
Linux Deployment, December. 2023 to April 2024
• Managed Hypervisor Linux and Windows Server 2019, 2022 for multi-cloud applications.
• Conducted vulnerability testing (pen tests) and system hardening.
• Implemented a SIEM solution for a SOHO network, including scripting automations and applying CIS benchmarks.
SIEM, SOAR, SOHO Lab., February 2024 to May. 2024
• Installed and configured a SIEM solution on a small network.
• Configured SSL certificates, SIEM rules, system hardening, and issue remediation.
• Experience with Wazuh, Elastic, Splunk, and Microsoft Sentinel.

Skills

Security Information and Event Management, Security Orchestration, Automation, and Response, Cloud Security, Cryptography, Forensic Analysis, Incident Response and Recovery, Linux, Windows, Azure, Operating Systems, Firewals, Open Systems Interconnection (OSI) model, Transmission Control Protocol/Internet Protocol Model, Vulnerability Mitigation , Systems Hardening, Zero Trust, Network Security, Penetration Testing, Scripting, Bash, PowerShell, Threat and Vulnerability Management, Security Operations. Threat and Vulnerability, Management, Network Security, Incident Response, Risk Management, Security Information and Event Management (SIEM), Penetration Testing, Malware Analysis, Cryptography, Operating Systems, Programming and Scripting,

About

Cybersecurity Analyst with expertise in Security Operations, Incident Response, and Cloud Security. Hands-on experience in penetration testing, network security, and SIEM solutions. Transitioned from business operations to cybersecurity with CompTIA CySA+ certification and hands-on technical labs.