Rishikesh Borah
Cybersecurity Student | Ethical Hacking Learner | Offensive Security Enthusiast
About Me
I'm a BCA student and daily Kali Linux user focused on practical cybersecurity learning. My journey involves hands-on experience with penetration testing, web security, networking, Linux administration, and Active Directory exploitation. I have achieved Top 1% on TryHackMe (Global Rank #22331) and Indian Rank #30 in May 2026, completing 200+ labs while building 6+ security projects. I believe in learning by doing - every lab completed and project built brings me closer to my goal of becoming a skilled offensive security professional.
$ cat focus_areas.txt
$ cat current_goals.sh
Preparing for CEH by EC-Council (Expected Dec 2026)
Future certifications: OSCP and OSEP
Building practical security tools
Contributing to security community through writeups
Daily Driver
Kali Linux
Achievement Stats
TryHackMe Global
Global Rank
Indian Rank (May 2026)
200+ Labs Solved
Projects Built
Certifications
Technical Skills
Completed Labs
Hands-on practice rooms and challenges from various platforms
Investigating Windows
Forensics
A windows machine has been hacked, its your job to go investigate this windows machine and find clues to what the hacker might have done.
OhSINT
OSINT
Are you able to use open source intelligence to solve this challenge?
Bounty Hacker
Hacking
You talked a big game about being the most elite hacker in the solar system. Prove it and claim your right to the status of Elite Bounty Hacker!
Printer Hacking 101
Networking
Learn about (and get hands-on with) hacking printers and understanding the basics of IPP.
Attacking ICS Plant #1
ICS Security
Learn how to discover and attack ICS systems using protocol (Modicon / Schneider Electric).
Searchlight - IMINT
OSINT
OSINT challenges in the imagery intelligence category
Active Reconnaissance
Networking
Learn how to use simple tools such as traceroute, ping, telnet, and a web browser to gather information.
Tech_Support: 1
Hacking
Hack into the scammer's under-development website to foil their plans.
Offensive Security Intro
Security
Hack your first website (legally in a safe environment) and experience an ethical hacker's job.
Defensive Security Intro
Security
Introducing defensive security and the different careers in the security industry.
Become a Hacker
Learning Path
Learn how TryHackMe can help you become a hacker.
TryHack3M: Bricks Heist
CTF
Dive into the heart of the system with just an ACE CVE as your key.
Search Skills
Intelligence
Learn how to search the internet and use specialized search engines and technical docs.
Malware Classification
Malware
Learn how to identify, classify, and understand common types of malware.
Theseus
Challenge
The first installment of the SuitGuy series of very hard challenges.
You're in a cave
RPG
A room with some ctf elements inspired in text based RPGs
Osiris
Challenge
Can you Quick it?
Startup
Challenge
Abuse traditional vulnerabilities via untraditional means.
Security Projects
Tools and applications built to learn and practice security concepts
Wifi Password Guesser
Built a WiFi Security Testing Tool using Python. Developed an educational project to understand wireless security concepts, password auditing workflows, and automation in controlled lab environments. The tool simulates credential testing using user-provided inputs and demonstrates password evaluation for learning purposes.
Password Strength Checker Or Generator (CLI)
Built a Password Strength Checker & Generator (CLI) using Python. Developed a command-line security tool that evaluates password strength and generates stronger passwords based on user-selected preferences. Features include password scoring, strength meter visualization, custom password length, uppercase/lowercase selection, numbers, special characters, and an interactive menu-driven interface.
RouteBuster
Built RouteBuster – A Directory & Route Enumeration Tool. Recently developed an educational cybersecurity project inspired by web content discovery and route enumeration concepts. RouteBuster helps identify accessible directories, files, and routes through automated requests and customizable scanning options. Features: Directory & File Enumeration, Extension Support, Multi-threaded Scanning, Recursive Scanning, User-Agent Rotation, Export Results, GUI + CLI Experience.
Port Scanner (Python)
A lightweight port-scanning tool using low-level socket programming. Identifies open ports and active services on target IPs or domains to detect vulnerabilities. Built to explore networking, Python automation, and responsible security practices in authorized environments only.
IP-Jumper
Built IP-Jumper using Python. Developed an educational networking project to understand IP routing concepts, connection flow, and automated network switching in controlled environments. The tool focuses on exploring how network paths, request handling, and connectivity work through automation and user-defined configurations.
Password Strength Checker Or Generator
Developed an educational security project that analyzes password strength and generates stronger passwords based on user experiences. The tool includes password scoring, strength meter visualization, custom password length, uppercase/lowercase control, numbers, special characters, and an interactive user-driven interface.
Certifications & Credentials
Completed
Blog & Writeups
Articles, writeups, and documentation from various platforms
Why Strong Passwords Matter More Than Ever: Protecting Your Digital Life in 2026
An essential guide to understanding password security in 2026 and beyond. This writeup explores why strong passwords remain the first line of defense against cyber threats, common password vulnerabilities, best practices for creating unbreakable passwords, and how to manage them securely. Learn about password managers, multi-factor authentication, and the evolving threat landscape. Perfect for everyone from beginners to security professionals looking to strengthen their digital defenses and protect their personal and professional accounts.
Mastering Nmap Port Scanning: Commands, Techniques & Real-World Reconnaissance
A comprehensive guide to mastering Nmap port scanning techniques for real-world reconnaissance. This writeup covers essential Nmap commands, advanced scanning methods, network enumeration strategies, and practical applications in penetration testing. Learn how to effectively identify open ports, services, and vulnerabilities using Nmap, along with best practices for evading detection and optimizing scan performance. Perfect for cybersecurity professionals and ethical hackers looking to deepen their reconnaissance skills.
My First Global CTF Experience in AI Odyssey — Achieving Global Rank #28 Without Prior AI Security Knowledge
An in-depth account of my first global CTF competition in the AI Odyssey challenge, where I achieved a global rank of #28 despite having no prior AI security knowledge. This writeup details the journey from challenge discovery to solving complex AI security puzzles, overcoming learning curves, applying creative problem-solving techniques, and the strategies that led to a competitive global ranking. Perfect for anyone interested in AI security, CTF competitions, and how to leverage existing cybersecurity knowledge in emerging domains.
My First Real-World Style Cybersecurity CTF Experience — From Theory to Practical Security
A comprehensive journey through my first real-world style CTF experience, bridging the gap between theoretical cybersecurity knowledge and practical application. This writeup covers the challenges faced, techniques used to overcome them, and the valuable lessons learned throughout the competition. From reconnaissance and vulnerability identification to exploitation and privilege escalation, discover how theoretical security concepts translate into practical offensive security scenarios.
Responsible Disclosure & My First Bug Bounty Experience — Learning That Security Is More Than Finding Vulnerabilities
Explore the journey of my first bug bounty experience, emphasizing the importance of responsible disclosure in the cybersecurity industry. This writeup covers vulnerability discovery, effective communication with development teams, and the ethical considerations that separate true security professionals from opportunists. Learn how finding vulnerabilities is just the beginning—the real skill lies in handling them responsibly, understanding business impact, and collaborating with organizations to improve their security posture.
Get In Touch
Interested in collaboration, have questions, or just want to connect? Feel free to reach out.
$ cat social_links.txt
$ echo $LOCATION
India