Skip to content
View joseph-guidici's full-sized avatar

Block or report joseph-guidici

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
joseph-guidici/README.md

Hey, I'm Joseph! πŸ‘‹

Motivated cybersecurity student with a strong foundation in hands-on learning and a demonstrated ability to lead teams and deliver results in fast-paced environments. As a Team Leader at Chick-fil-A, I have developed the communication, accountability, and attention to detail that technical roles demand β€” skills I now bring to my pursuit of a career in IT security. I am building practical experience through self-directed projects and labs, with a focus on growing into a role where I can protect systems, solve problems, and contribute to a team that takes security seriously.

πŸ“„ Download My Resume

Projects

Ethical & Legal Disclosure

Pentest Lab Series

A collection of home lab walkthroughs covering core penetration testing concepts from the ground up.

# Lab Description Status Link
01 Home Lab Setup Set up an isolated penetration testing environment using Kali Linux and intentionally vulnerable machines βœ… Completed GitHub
02 Network Reconnaissance Performed network reconnaissance against an isolated lab environment to identify live hosts, open ports, and running services βœ… Completed GitHub
03 OSINT Gathering Conducted open source intelligence gathering on an authorized practice target using passive reconnaissance techniques to collect emails, subdomains, IP addresses, and metadata without directly interacting with any systems βœ… Completed GitHub
04 Vulnerability Scanning Scanned an intentionally vulnerable machine using OpenVAS, Nessus Essentials, and Nmap NSE scripts to identify known CVEs, assess severity ratings, and document remediation recommendations βœ… Completed GitHub
05 Metasploit Basics Exploited known vulnerabilities on a target machine using the Metasploit Framework, covering the full attack chain from module selection through successful exploitation and post-exploitation enumeration βœ… Completed GitHub
06 Web Application Testing Tested a deliberately vulnerable web application for common OWASP Top 10 vulnerabilities including SQL injection, cross-site scripting, and CSRF using Burp Suite and manual techniques πŸ”„In Progress
07 Password Cracking Cracked password hashes across multiple formats including MD5, SHA1, NTLM, and bcrypt using dictionary and rule-based attacks with Hashcat and John the Ripper ⬜
08 Linux Privilege Escalation Starting from a low-privilege shell, enumerated a Linux system for misconfigurations and escalated to root by exploiting SUID binaries, weak sudo permissions, and misconfigured cron jobs ⬜
09 Windows Privilege Escalation Gained SYSTEM-level access on a misconfigured Windows machine by identifying and exploiting unquoted service paths, weak registry permissions, and token impersonation vulnerabilities ⬜
10 Wireless Network Attacks Captured a WPA2 four-way handshake against a personally owned test network, analyzed the authentication exchange in Wireshark, and cracked the handshake offline using dictionary attacks ⬜
11 Active Directory Attacks Built a small AD lab environment and practiced enterprise attack techniques including BloodHound enumeration, Kerberoasting, and Pass-the-Hash to escalate from a domain user to Domain Admin ⬜
12 Full Pentest Simulation Executed an end-to-end penetration test against an authorized practice machine, applying skills from all previous labs across the full engagement lifecycle and delivering a professional findings report ⬜

Google Certification Series

A collection of labs completed within the Google Cybersecurity Certificate.

# Lab Description Status Link
01 Security Audit Performed a security audit for a fictional company βœ… Completed GitHub
02 Network Traffic Analysis Analyzed live and captured network traffic using Wireshark to identify protocols, suspicious activity, and potential security incidents βœ… Completed GitHub
03 Linux File Permissions Used the Linux command line to inspect and modify file permissions, manage users and groups, and apply the principle of least privilege βœ… Completed GitHub
04 SQL Security Filters Wrote SQL queries to filter and investigate employee and login activity logs to support a security incident investigation βœ… Completed GitHub
05 Vulnerability Assessment Assessed a fictional company's system against the NIST framework, identified risks, and documented remediation recommendations βœ… Completed GitHub
06 Incident Handler's Journal Documented a series of security incidents using a structured journal format, covering detection, analysis, containment, and lessons learned βœ… Completed GitHub
07 Python File Parser Built a Python script to automate the parsing and updating of an employee access log file, applying string and list manipulation techniques βœ… Completed GitHub

Connect With Me

Pinned Loading

  1. pentest-lab-01-home-lab-setup pentest-lab-01-home-lab-setup Public

    Set up an isolated penetration testing home lab using Kali Linux and intentionally vulnerable machines to practice offensive security techniques in a safe, controlled environment.

    Shell

  2. pentest-lab-02-network-recon pentest-lab-02-network-recon Public

    Perform active network reconnaissance against an isolated lab environment using industry-standard tools to identify live hosts, enumerate open ports, and fingerprint running services.

    Shell

  3. pentest-lab-03-osint pentest-lab-03-osint Public

    The goal of this lab was to collect open source intelligence on a practice target using only publicly available sources, without ever touching the target's systems directly.

    HTML