Lab Write-Ups
Detailed walkthroughs of Active Directory, Cloud, and Web Application labs - step by step from initial access to domain compromise.
nithin0x.space
A space for a penetration tester to document hands-on labs, research, and practical security learning.
About Me
Section titled “About Me”Hi, I’m Nithin Kumar - a penetration tester.
I’m curious about how systems work, how attackers break them, and how defenders secure them. My learning approach is hands-on: solving cybersecurity labs, experimenting, failing, fixing, and improving.
What You’ll Find Here
Section titled “What You’ll Find Here”Research Notes
Notes on attack techniques, tool usage, and security concepts distilled from hands-on practice.
Cloud Security
AWS, Azure, and GCP security - IAM exploitation, privilege escalation, and cloud-native attack paths.
Active Directory
Kerberoasting, AD CS abuse, BloodHound analysis, lateral movement, and domain takeover techniques.
Featured Platforms
Section titled “Featured Platforms” Vulnlab Active Directory labs with realistic attack chains.
Hack Smarter Red team labs covering internal pentesting scenarios.
CloudGoat AWS exploitation - Lambda, EC2 SSRF, SNS abuse, and more.
Infinity Learning Cloud IAM - role assumption, KMS, SSM, and Lambda privesc.
Pwned Labs Practical AWS security labs - S3, IAM, and SNS exploitation.
My Focus Areas
Section titled “My Focus Areas”Penetration Testing
Web, Cloud, and Active Directory
Cloud Security
AWS and Microsoft 365
System Hardening
Security benchmarks and configurations
Scripting
Python, Bash, PowerShell automations