Barel Cohen

Cybersecurity analyst specializing in penetration testing, with a strong background in network installation and security. Experienced in planning, executing, and managing comprehensive penetration tests using advanced methodologies and tools. Possesses extensive hands-on experience from academic projects and real-world cyber scenarios, adept at identifying vulnerabilities and proposing effective remediation strategies. Known for thriving in high-pressure environments, combining analytical skills and meticulous attention to detail to deliver actionable insights. Skilled in assessing and enhancing security protocols to mitigate risks and support proactive defense measures.

Key Projects Additional Information

BC_PT Framework for Penetration Testing

• Developed and implemented a comprehensive penetration testing framework.
• Automated various security assessments using advanced tools, enhancing overall security posture.

Project Lead and Developer: Designed and developed a comprehensive framework to streamline and automate penetration testing processes.

• Automation: Implemented automated scripts to conduct various security assessments, significantly reducing manual effort and increasing efficiency.
• Tool Integration: Integrated multiple industry-standard tools such as nmap, masscan, dirb, nikto, enum4linux, Hydra, and TOR to provide a holistic approach to penetration testing.
• Network Scanning: Automated TCP and UDP network scans using nmap and masscan to identify open ports and services. capable of scanning address ranges specified by the user.
• Web Vulnerability Scanning: Conducted thorough web vulnerability scans with dirb and nikto to detect potential security weaknesses in web applications.
• Passive Information Gathering: Leveraged tools like whois and ipinfo.io for non-intrusive information gathering to map out network infrastructure.
• Enumerating Scans: Used enum4linux to gather detailed information from Windows and Samba systems, identifying potential attack vectors.
• Weak Credentials Testing: Utilized Hydra to perform password cracking and test for weak credentials, enhancing the overall security posture.
• Anonymous Scanning: Ensured anonymity during scans by integrating TOR and NIPE, protecting the tester's identity and avoiding detection.
• Documentation and Reporting: Created detailed documentation and comprehensive reports outlining findings, vulnerabilities, and recommended mitigations.
• GitHub Repository: Published the project on GitHub for public access and collaboration, promoting transparency and community engagement. View Project Repository

For more details and access to the project documentation, visit the BC_PT GitHub repository. You can also view the detailed project documentation in PDF format.

https://github.com/Barel-cohen/BC_PT

https://github.com/Barel-cohen/BC_PT/blob/main/BC_PT-PDF-Github.pdf

• Code: If you’re interested in exploring the code behind my ‘Penetration Testing Framework’ project, I’m more than happy to share it with you. Please feel free to reach out, and I’ll provide further details. Thank you!