Dennis Kontic Cybersecurity Lab Portfolio
Blue Team Project

CEHv13 Academia ELITE Labs

Back to Projects Main Portfolio DonkeySec YouTube

CEHv13 Academia ELITE Certification Bundle Labs

Overview

This project summarizes my completion of the CEHv13 Academia ELITE Certification Bundle labs through EC Council. The lab work covered a broad range of ethical hacking concepts, offensive security testing methods, and defensive analysis techniques in a controlled training environment.

The purpose of this project is to document the technical exposure I gained across reconnaissance, scanning, enumeration, vulnerability analysis, web application testing, cloud security, mobile security, IoT analysis, malware analysis, traffic inspection, cryptography, and Active Directory attack concepts.

All activities were completed in authorized lab environments for educational purposes.

Completion Details

  • Program: CEHv13 Academia ELITE Certification Bundle
  • Provider: EC Council
  • Completion period: December 2025 to January 2026
  • Credential type: Certificate of Achievement
  • Focus: Ethical hacking labs, attack methodology, tool exposure, and defensive understanding

Important Note

This page documents lab learning from the CEHv13 Academia ELITE Certification Bundle. It should not be confused with claiming the full Certified Ethical Hacker certification unless the official CEH exam has also been passed.

Objective

The objective of this lab series was to understand common attacker techniques so I could better recognize, investigate, and defend against them from a cybersecurity analyst perspective.

The labs helped me develop familiarity with:

  • Reconnaissance workflows
  • Network scanning
  • Service enumeration
  • Vulnerability identification
  • Password attack concepts
  • Active Directory attack paths
  • Malware behavior analysis
  • Packet inspection
  • Web application vulnerabilities
  • SQL injection concepts
  • Cloud misconfiguration review
  • Mobile and IoT security analysis
  • Cryptography fundamentals

Skills Demonstrated

  • Footprinting and reconnaissance
  • Open source intelligence gathering
  • Network scanning and enumeration
  • Service discovery
  • Vulnerability analysis
  • Active Directory attack concept review
  • Password attack concept review
  • Web application security testing
  • SQL injection analysis
  • Malware behavior review
  • Network traffic analysis
  • Cloud security review
  • Mobile security analysis
  • IoT traffic inspection
  • Cryptography and hashing review
  • Defensive interpretation of offensive techniques

Tools and Technologies Practiced

Reconnaissance and Footprinting

  • Google Hacking
  • Sherlock
  • Recon ng
  • ShellGPT
  • OSINT collection
  • Infrastructure mapping
  • Public exposure review

Network Scanning and Enumeration

  • Nmap
  • Nmap NSE scripts
  • SNMP enumeration
  • LDAP enumeration
  • NFS enumeration
  • SnmpWalk
  • AD Explorer
  • RPCScan
  • Firewall and service discovery concepts

System Hacking and Active Directory Concepts

  • Buffer overflow concepts
  • Password cracking concepts
  • Responder
  • CrackMapExec
  • PowerView
  • AS REP Roasting concepts
  • Kerberoasting concepts
  • Privilege escalation concepts
  • Active Directory enumeration
  • Attack path analysis

Malware Analysis and Traffic Inspection

  • IDA Pro
  • OllyDbg
  • Wireshark
  • Malware behavior review
  • ELF executable analysis
  • Traffic inspection
  • Packet analysis
  • Suspicious payload behavior review
  • MAC flooding concepts
  • DHCP starvation concepts

Web Application and SQL Injection Testing

  • Burp Suite
  • OWASP ZAP
  • SQLMap
  • Web spidering
  • Request manipulation
  • SQL injection concepts
  • Remote Code Execution concepts
  • Log4j vulnerability concepts
  • Brute force testing in lab environments

Cloud, Mobile, and IoT Security

  • Azure reconnaissance concepts
  • AADInternals
  • AWS CLI
  • AWS S3 exposure review
  • Docker image review
  • Trivy
  • Android security concepts
  • PhoneSploit Pro
  • AndroRAT concepts
  • IoT traffic analysis
  • Wireshark

Cryptography

  • CyberChef
  • VeraCrypt
  • Hashing
  • Encryption concepts
  • Self signed certificates
  • Data protection fundamentals

Lab Methodology

1. Reconnaissance

The lab series began with information gathering and infrastructure discovery. I practiced using public information sources, search techniques, and reconnaissance tools to identify exposed assets, usernames, domains, and technology indicators.

This helped reinforce how much information can be collected before direct interaction with a target environment.

2. Scanning and Enumeration

After reconnaissance, I practiced scanning and enumeration workflows to identify exposed services, protocols, operating system indicators, and possible misconfigurations.

This included reviewing services such as SNMP, LDAP, NFS, and Active Directory related infrastructure. The focus was on understanding how attackers identify attack surfaces and how defenders can reduce unnecessary exposure.

3. System Access and Privilege Escalation Concepts

The labs introduced common system hacking and privilege escalation concepts in a controlled environment. I practiced understanding how weak passwords, exposed services, misconfigurations, and Active Directory weaknesses can contribute to compromise.

From a defensive perspective, this helped me better understand why account hardening, least privilege, logging, patching, and monitoring are important.

4. Active Directory Attack Analysis

The Active Directory portion helped me understand how attackers can abuse authentication, delegation, weak account controls, and misconfigured privileges.

I reviewed concepts such as AS REP Roasting and Kerberoasting to better understand how defenders can detect suspicious authentication behavior and protect privileged accounts.

5. Malware and Network Analysis

The malware and sniffing labs focused on understanding suspicious executable behavior and analyzing network traffic.

I practiced reviewing malware behavior in a controlled setting and using packet analysis to understand how suspicious activity may appear on the network.

This helped connect malware analysis concepts with SOC investigation workflows.

6. Web Application Security

The web security labs covered common application vulnerabilities such as SQL injection, Remote Code Execution, insecure input handling, and vulnerable components.

I used tools such as Burp Suite, OWASP ZAP, and SQLMap in lab environments to understand how attackers test web applications and how defenders can recognize exploit attempts in logs and alerts.

7. Cloud, Mobile, and IoT Security

The cloud and mobile sections introduced security testing concepts across Azure, AWS, Docker, Android, and IoT environments.

I practiced reviewing cloud storage exposure, cloud identity concepts, container image findings, mobile security issues, and IoT network traffic. This helped me understand how modern environments expand the attack surface beyond traditional endpoints.

8. Cryptography and Data Protection

The cryptography labs covered hashing, encryption, certificates, and data protection tools.

I practiced using CyberChef and VeraCrypt to understand how data can be encoded, hashed, encrypted, and protected.

Defensive Lessons Learned

These labs helped me understand offensive techniques from a defensive perspective.

Important lessons included:

  • Reconnaissance can expose sensitive organizational information before an attack begins
  • Unnecessary open services increase risk
  • Weak authentication can lead to account compromise
  • Active Directory misconfigurations can create major attack paths
  • Web application flaws can lead to data exposure or system compromise
  • Cloud storage and identity misconfigurations can create serious impact
  • Malware behavior and network traffic must be analyzed together
  • Logs are only useful when defenders know what behavior to look for
  • Understanding attacker methods improves detection and response

What This Project Demonstrates

This project demonstrates my ability to:

  • Understand common attacker workflows
  • Use security tools in controlled lab environments
  • Analyze infrastructure exposure
  • Review network and service enumeration results
  • Understand Active Directory attack concepts
  • Analyze web application attack techniques
  • Review cloud and container security issues
  • Interpret malware and traffic analysis concepts
  • Connect offensive security techniques to defensive monitoring
  • Communicate technical lab experience in a professional way

Disclosure Notice

This writeup is based on authorized CEHv13 Academia ELITE Certification Bundle labs completed in a controlled training environment.

This page does not include unauthorized activity, private systems, production targets, exploit instructions, payload code, or confidential data. The purpose of this page is to document lab learning and defensive understanding.

Back to Projects Portfolio Home