Why MollySec?

I’ve been keeping my notes organized at x7331.gitbook.io for a while now; it works well as a tidy notepad for walkthroughs and quick references. But I found myself wanting to dig deeper into certain topics, and Gitbook just wasn’t the right format for that kind of writing.

So I created this site as a space to explore subjects I’m genuinely interested in and want to understand at a deeper level. These are practical topics that come up in my day-to-day work, usually around understanding why something works the way it does and finding ways to make it better.

If you’ve landed here by chance, fair warning: I’ve only been in this field since 2024, so there will likely be inaccuracies in my posts. I’m documenting my research as I learn. That said, I’m always open to discussion and critical feedback if you spot something worth correcting or exploring further.

Who Am I?

I’m a penetration tester currently working at a consultancy, where I handle everything from CIS benchmarks to Active Directory assessments (my main focus), along with web and API work. Before this, I spent a couple of years in Fintech doing internal pentesting.

I’m working toward a Diploma (who knows, maybe a BSc!) in Cybersecurity, and I’ve picked up a few industry certifications along the way, including the OSCP, CRTP, and CAPE.

Welcome to my MollySec and I hope you find something useful here.