Ethical cybersecurity practice
Building core habits around controlled labs, responsible boundaries and structured notes.
HELLO, I'M
CRTA-Certified Cybersecurity Learner
Focused on Red Teaming, VAPT, Web Security and Active Directory Security.
I learn through authorized laboratories and ethical environments while building practical security, open-source and community projects.
Currently pursuing CRTP training and developing deeper practical experience in Active Directory security.
I keep the work grounded in authorized practice, careful study and useful documentation.
I'm Debojit Singh, a cybersecurity learner focused on Red Teaming, Vulnerability Assessment and Penetration Testing, web security and Active Directory environments.
My interest in cybersecurity is driven by practical learning. Rather than limiting myself to theory, I work through authorized laboratories, study attack paths, document findings and understand why security weaknesses occur.
My current learning includes reconnaissance, enumeration, web application testing, privilege-escalation methodology, Kerberos fundamentals, SMB environments, Active Directory enumeration and network pivoting.
I am CRTA certified and currently pursuing CRTP training to build stronger practical knowledge of enterprise Active Directory security.
Alongside cybersecurity, I build open-source and web-based projects. I founded BlackPanda Labs, a student-led, non-profit, open-source community created to help learners collaborate, build projects and receive proper recognition for genuine contributions.
My long-term direction is offensive security, especially ethical Red Team operations, Active Directory assessments and clear professional reporting.
Building core habits around controlled labs, responsible boundaries and structured notes.
Studying reconnaissance, enumeration, web testing, Kerberos fundamentals, SMB and privilege paths.
Building public projects and helping contributors receive clear recognition through BlackPanda Labs.
A concise view of personal work, lab documentation and leadership initiatives without publishing sensitive private material.
An open-source web application for sealing messages, goals, memories or promises until a selected future unlock date.
Documented learning completed in controlled and authorized Active Directory laboratories.
Private credentials, flags and sensitive laboratory information are not published.
A student-led, non-profit, open-source community founded by Debojit Singh.
These are learning directions and practice areas, not claims of expert-level mastery.
Reconnaissance, enumeration, privilege-escalation methodology, network pivoting, post-exploitation concepts and reporting.
Domain enumeration, Kerberos fundamentals, SMB, ACL analysis, authentication concepts and attack-path research.
Burp Suite, authentication testing, access-control testing, JWT concepts, content discovery and OWASP fundamentals.
Completed practical Red Team training and a report-based assessment.
Currently developing deeper knowledge of enterprise Active Directory security.
Currently studying CEH v13 concepts across ethical hacking, networking, web security and system security.
NON-PROFIT • OPEN-SOURCE • STUDENT-LED
BlackPanda Labs is a student-led, non-profit, open-source community and is separate from my personal paid freelance services.
Writing is where the learning becomes easier to review, share and improve. The first public categories are being prepared honestly as coming soon.
Coming soon.
Coming soon.
Coming soon.
Coming soon.
Cybersecurity work stays within labs, controlled environments and ethical learning boundaries.
I focus on attack paths, root causes and reporting clarity, not just tool output.
Open-source projects and community coordination are shared without exposing private lab details.
I'm a CRTA-certified cybersecurity learner focused on Red Teaming, VAPT, web security, VDP and bug-bounty research, and Active Directory environments.
I'm open to authorized cybersecurity opportunities, paid personal projects, CTF and hackathon invitations, technical discussions and selected collaborations.
CYBERSECURITY & RED TEAM OPPORTUNITIES
Open to suitable vulnerability-assessment and penetration-testing opportunities where written authorization, target scope, rules of engagement and expected deliverables are clearly established.
Discuss a VAPT OpportunityOpen to authorized Vulnerability Disclosure Programs and bug-bounty programs with published scope, safe-harbor terms and responsible-disclosure rules.
Share a ProgramOpen to joining legal Capture the Flag teams and controlled cybersecurity challenges involving web, Linux, Windows, privilege escalation, reconnaissance and beginner Active Directory tasks.
Invite Me to a CTFOpen to suitable hackathons involving cybersecurity, open-source development, technical research, documentation, presentation or project coordination.
Invite Me to a HackathonAvailable for suitable discussions and student sessions around Red Team learning, authorized lab methodology, VAPT, Active Directory, open-source projects and community building.
Propose a SessionPAID PERSONAL SERVICES
Scoped support for authorized web-security review, reconnaissance, enumeration, validation and technical reporting.
Professional static websites, personal portfolios and responsive landing pages built around clear content and easy navigation.
Project case studies, technical documentation, contributor guides and educational technical content.
Planning, documentation and coordination support for suitable technical, educational and student-led projects.
Pricing depends on the project scope, timeline and expected deliverables. A clear estimate will be discussed before paid work begins.
FREE 30-MINUTE INTRO CALL
Book a free introductory conversation about a paid project, authorized security opportunity, VDP, CTF, hackathon, technical session or collaboration.
FREE OPEN-SOURCE COLLABORATION
I may voluntarily contribute code, frontend implementation, documentation, research or project support to suitable open-source initiatives.
Acceptance depends on the project's purpose, scope and my availability.
No private phone number, location or email address is published here.