zx10r Security Notes is a small technical notebook for practical security learning.

I use it to collect CTF writeups, lab notes, web exploitation workflows, Active Directory practice, and the lessons that come from repeating the work until the patterns become clearer.

The goal is not to publish perfect research. The goal is to keep a visible trail of how I approach targets, document findings, validate assumptions, and turn hands-on practice into reusable methodology.

Focus areas

  • Web application testing workflows
  • CTF and lab writeups
  • Active Directory enumeration and escalation notes
  • Practical defensive observations from offensive practice
  • Reporting habits, checklists, and repeatable methodology

Elsewhere

The main portfolio has the broader project and contact context. This blog stays focused on security notes, writeups, and learning artifacts.