OSCP+ · OSCP· eCPPTv2 · eWPTXv2

Breaking systems
to protect them.

I'm Anshil Dev — IT Security Analyst specialising in enterprise VAPT, PCI DSS audits, and Active Directory security. I share everything I learn so you don't have to figure it out alone.

Read the Blog Free Notes & Resources
anshil@kali:~
400+
VAPT Engagements
5,000+
Assets Tested
274
Critical Vulns Found
3+
Years Experience

Latest from the Blog

See all →
Career

How I passed OSCP+ — My full journey

From zero to OSCP+ in 18 months. What I studied, what I failed at, and what finally worked.

Dec 2025 · 12 min read
Techniques

Active Directory Attack Cheatsheet for Pentesters

BloodHound, Mimikatz, lateral movement — everything I use on real engagements.

Jan 2026 · 8 min read
Compliance

PCI DSS for Beginners — What it actually means

Stripped of jargon. A practical guide to what PCI DSS is and why it matters in VAPT.

Feb 2026 · 6 min read

Free Notes & Resources

Browse all →
Nmap Full Reference
Every flag I actually use in engagements
🔍
Burp Suite Mastery
From proxy setup to advanced intruder attacks
🏢
Active Directory Security
Attack paths, BloodHound queries, AD hardening
🐧
Linux Privilege Escalation
SUID, cron jobs, sudo misconfigs and more
🌐
OWASP Top 10 Notes
Explained with real examples and payloads
🏦
PCI DSS Audit Guide
What auditors check and how to prepare

All notes & blogs are free. Always.

If my content helped you pass an exam, land a job, or understand something better — a coffee keeps me going. No pressure at all.

☕ Buy me a coffee