// initializing operator profile

Yoseph Mekonnen

> |

Offensive security professional focused on adversary simulation, red team operations, and breaking into systems before the bad guys do.

GitHub Contact

# About

Yoseph Mekonnen

Cybersecurity professional specializing in offensive security and adversary simulation. I dissect complex systems to identify critical vulnerabilities, operating with a stealth-first methodology to ensure comprehensive coverage and actionable results.

My mission is to expose weaknesses before they can be exploited by malicious actors.

Alias AfroSec
Role Red Team Operator and Penetration Tester
Status Active

# Experience

Cybersecurity Instructor

2025

BunaByte CyberSecurity

Delivered hands-on cybersecurity training covering penetration testing methodologies, network security, and system hardening. Designed lab environments and practical assessments for students.

Web Security Auditor

2025

INSA (Information Network Security Agency) cybertalent

Conducted web application security audits identifying vulnerabilities across production systems. Performed manual and automated testing using OWASP methodologies and delivered actionable remediation reports.

CTO

2025

YabTech

Leading the technical direction of the company infrastructure management, and cybersecurity operations.

Cybersecurity Club Founder & Mentor

2024

AASTU-CSC CyberSecurity Club

Founded and led the university cybersecurity club. Organized CTF competitions, mentored students in offensive security fundamentals, and built a community of aspiring security professionals.

# Skills & Arsenal

Network Operations

  • Penetration Testing
  • Traffic Analysis
  • Nmap / Masscan
  • Impacket
  • Responder
  • CrackMapExec / NetExec

Web Exploitation

  • OWASP Top 10
  • Burp Suite Pro
  • API Security Testing
  • SQLMap
  • Ffuf / Gobuster
  • Nikto
  • XSStrike

Active Directory & Identity

  • Kerberoasting
  • AS-REP Roasting
  • BloodHound Analysis
  • GPO Abuse
  • Delegation Attacks
  • NTLM Relay
  • Golden/Silver Tickets

Programming

  • Python / Bash
  • PowerShell
  • C / C++
  • Assembly (x64)
  • Django

C2 & Weaponry

  • Cobalt Strike
  • Metasploit
  • Havoc C2
  • Adaptix C2
  • C4 C2
  • Mimikatz
  • Wireshark

# Projects

DocVault

DocVault

A deliberately vulnerable Document Management System built with Django and React. Designed as a security training platform for practicing real-world web exploitation techniques.

DjangoReactSecurity
Source Code
SecureAI

SecureAI

AI-driven vulnerability scanner combining automated scanning with intelligent analysis. Explores the intersection of artificial intelligence and offensive security.

PythonAI/MLSecurity
Source Code
NetSniffer

NetSniffer

Real-time packet capture and traffic analysis tool built with Scapy. Enables deep inspection of network protocols for security monitoring and forensic analysis.

PythonScapyNetworking
Source Code
APTSEARCH

APTSearch

A project dedicated to intelligence archiving and threat actor tracking. Consolidates threat intelligence to aid in recognizing and defending against Advanced Persistent Threats.

Threat IntelPython
Site
BUGCHECK

BugCheck

a tool used for bugbounty and web pentesting roadmap.

Bug BountyWeb PentestingRoadmap
Site

# Certifications

CRTO

CRTO

ZeroPoint Security

Certified Red Team Operator — real-world adversarial TTP simulation

CRTOM

CRTOM

RedTeam Leaders

Certified Red Team Operation Management

CRTA

CRTA

CyberWarfare Labs

Certified Red Team Analyst

THM

Advent of Cyber 2024

TryHackMe

Certificate of Participation

CTF

CyberShield ShowDown CTF

Yekolo-Temari & ALX Ethiopia

Certificate of Participation

HTB

University CTF 2024

HackTheBox

Certificate of Participation

Alison

Course Completion

Alison Learning

Successfully completed coursework with passing grade

Cisco

Cybersecurity Essentials

CISCO Networking Academy

Student Level Credential Achievement

# Contact

~/contact

$ cat contact_info.txt


Email     : afr0s3c@gmail.com

GitHub    : github.com/Afr0S3c

LinkedIn  : linkedin.com/in/yoseph-mekonnen-afrosec


$ _

Full Certificate