Bob Joe
Stafford,Staffordshire
Overview
4
4
years of professional experience
3
3
years of post-secondary education
1
1
Certification
Work history
Penetration Testing Labs
Self-Directed
2022.01 - Current
- Completed 200+ TryHackMe labs, 200+ Offensive Security Proving Grounds machines, and 100+ PortSwigger Web Security Academy labs, focusing on real-world web and system exploitation across Linux and Windows environments.
- Conducted end-to-end penetration testing on vulnerable systems and web applications, covering: reconnaissance, exploitation, privilege escalation, and post-exploitation
- Exploited vulnerabilities such as: SQL Injection, XSS, SSTI, RCE, Insecure Deserialization, Command Injection, LFI/RFI, Broken Authentication
- Documented methodologies and findings clearly, maintaining detailed notes on vulnerability discovery and exploitation processes to ensure reproducibility and knowledge sharing
- Conducted network enumeration and analysis using Nmap, Wireshark, and tcpdump
- Gained hands-on experience in Active Directory attacks, including enumeration, credential dumping, and privilege escalation using tools like BloodHound
- Developed Python and Bash scripts for automation and enumeration tasks
IT Security Support
Babcock University
Ilishan-Remo, Ogun State
2023.01 - 2024.11
- Monitored and analysed network traffic using Wireshark to identify anomalous behaviour, including unusual traffic patterns, potential data exfiltration, and unauthorised access attempts
- Investigated network activity by examining packet data, source/destination IPs, and traffic flows to detect deviations from baseline behaviour
- Applied security controls using Linux firewall (iptables) by creating and updating rules based on observed traffic patterns to mitigate potential threats
- Conducted web application testing using Burp Suite, identifying potential input validation issues and common vulnerabilities such as SQL injection risks
- Assisted in improving the security posture of university systems by proactively testing and monitoring both network and web application layers
- Communicated security findings clearly to team members, highlighting risks, potential impacts, and recommended mitigation actions
Education
Master of Science - Cyber Security
Junior University
Hatfield, Hertfordshire 2025.01 -
Bachelor of Science - Software Engineering
Bab University
Lagos Statee 2022.01 - 2024.11
Skills
- Penetration testing (Web and Network)
- Vulnerability Assessment and Exploitation
- Burp Suite & Web Application Testing
- Nmap & Network Enumeration
- Active Directory Enumeration & Privilege Escalation
- Python, Bash & PowerShell Scripting
- Linux & Windows Environment
- Packet Analysis & Traffic Inspection
- Visual Studio Code (Source code analysis)
- Communication & Problem-Solving
Certification
- Offensive Security Certified Professional (OSCP)
- Offensive Security Certified Professional Plus (OSCP+)
- Kali Linux Certified Professional (KLCP)
- AWS Certified SysOps Administrator – Associate
- Aptech Certified Network Administrator
Languages
English
Proficient (C2)
References
References available upon request.
Timeline
Master of Science - Cyber Security
Junior University
2025.01 -
IT Security Support
Babcock University
2023.01 - 2024.11
Penetration Testing Labs
Self-Directed
2022.01 - Current
Bachelor of Science - Software Engineering
Bab University
2022.01 - 2024.11