Name : Marco Zuniga
Location : Bell, CA
Focus : IT Support · Network Security · Ethical Hacking · GRC
Status : Actively applying — open to Help Desk, IT Support, and Cybersecurity roles
Two A.S. degrees and two certificates from Cypress College across CIS, Cybersecurity, DevSecOps, and Cyber Defense. Hands-on across PKI, firewall configuration, log analysis, Metasploit, and incident response — through 39 TryHackMe rooms and multiple CySA+-aligned labs. Currently pursuing CompTIA Network+.
| Credential | Institution | Status | |
|---|---|---|---|
| 🎓 | A.S. Computer Information Systems | Cypress College | Earned · 2022 |
| 🎓 | Cybersecurity Certificate | Cypress College | Earned · 2023 |
| 🎓 | DevSecOps Certificate | Cypress College | Earned · 2025 |
| 🎓 | A.S. Cyber Defense | Cypress College | Earned · June 2026 ✅ |
| ✅ | CompTIA ITF+ | CompTIA | Earned |
| 🔄 | CompTIA Network+ (N10-009) | CompTIA | In progress |
| 🔄 | CompTIA Security+ (SY0-601) | CompTIA | In progress |
| 🏆 | TryHackMe — Top 15% · ADEPT · 39 rooms | TryHackMe | tryhackme.com/p/Marcoz |
| 🎖️ | Linux PrivEsc badge — earned by 2.5% of users (Rare) | TryHackMe | tryhackme.com/p/Marcoz |
| 🎖️ | Networking Nerd · cat linux.txt · Webbed · World Wide Web · 7 Day Streak | TryHackMe | tryhackme.com/p/Marcoz |
Each repo includes a full write-up: lab environment, tools used, key decisions made, and what I'd do differently in production.
| Repo | What I did | Tools |
|---|---|---|
| PKI Infrastructure Lab | Deployed standalone Root CA, configured AD CS, set cryptographic policy | Windows Server, AD CS, pfSense |
| Apache Log Analysis — Bash | Detected attack traffic in Apache logs using bash pipelines; identified 1,500+ OWASP ZAP entries | Bash, grep/cut/sort/uniq, OWASP ZAP, Kali |
| Metasploit RAT + Incident Response | Built and deployed RAT via MSFVenom, established Meterpreter session, ran keylogger — then detected and killed it via PowerShell | Metasploit, MSFVenom, PowerShell, Kali |
| Network Firewall Config — pfSense | Configured firewall rules, NAT, and OpenVPN across segmented lab network | pfSense, Kali, Ubuntu |
| IDS Analysis — Security Onion | Monitored and analyzed network traffic, filtered and investigated threats | Security Onion, Sguil, Squert |
| Wireless Network Security | Packet capture and WEP/WPA vulnerability assessment | Wireshark, Aircrack-ng |
| Repo | What I did | Frameworks |
|---|---|---|
| Enterprise Risk Assessment — Twitcher | 15-domain security assessment for a 10M-user tech company with no security program — CISO briefing with findings and remediation roadmap | NIST CSF · GDPR · PCI DSS · CCPA |
| Incident Response Procedures | Phishing simulation and log-based IR analysis | NIST IR framework |
| Repo | What I did | Tools |
|---|---|---|
| Web Application Attacks | Exploited SQLi and XSS vulnerabilities in controlled lab environment | WebGoat, DVWA, Burp Suite |
| Password Cracking — Linux | Cracked hashed passwords using dictionary and brute-force methods | John the Ripper, Hashcat, Kali |
| Cryptography Concepts | Steganography, file integrity verification, encryption at rest vs. in transit | VeraCrypt, Steghide |
| Data Encryption | Compared BitLocker vs VeraCrypt for endpoint encryption | Windows, VeraCrypt |
OS & Systems : Kali Linux · Ubuntu · Windows Server 2012R2/2016 · Active Directory
Security Tools : Metasploit · Wireshark · Nmap · OWASP ZAP · Security Onion · OpenVAS · pfSense
Scripting : Bash · PowerShell · Python (coursework)
Platforms : TryHackMe (Top 15%) · NETLAB+ Labs · VirtualBox
Frameworks : NIST CSF · ISO 27001 concepts · CySA+ methodology · DevSecOps practices
Portfolio in active development — new labs added weekly.