Roadmap

Welcome to my Pentesting Roadmap page! After 8 years of studying and working in IT, I decided to fully dive into cybersecurity — more specifically ethical hacking and pentesting. This page shows where I stand today, what I’m currently learning, and where I want to go.

📚 Current Skills

Over the years, I’ve built a solid IT foundation that I’m now using to grow into a professional pentester:

• Database Knowledge: SQL programming (queries, reading code, basic optimization)
• Code Analysis: Able to read and understand code (e.g., Java, Python, PHP)
• Networking Fundamentals: TCP/IP, routing, switching, firewall basics
• Security Basics:
  • CEH (Certified Ethical Hacker) Foundation course completed
  • Knowledge of OWASP Top 10 vulnerabilities
  • Basic use of vulnerability scanning tools (Nessus, OpenVAS)
• System Management:
  • Windows Server & Active Directory experience
  • Linux server basics (Ubuntu, shell scripting)
• API Knowledge:
  • REST API understanding
  • Practical experience with Postman and basic manual API testing

🎯 Current Focus Areas

Right now, I’m working on sharpening my skills even further by following professional courses like:

• EC-Council CEH (Certified Ethical Hacker) full course
• Cisco Ethical Hacker
• API Security Fundamentals (through APIsec University)

At the company where I work as a Functional Manager, I’m also allowed to internally hack and test our systems and APIs as part of my learning process. This gives me real-world, hands-on experience that I can use to grow faster.

🛣️ Roadmap 2025 and Beyond

Here’s how I’m planning to develop my pentesting skills:

📌 Why Document This?

I believe that clear goals and accountability are super important when growing in cybersecurity. This page not only tracks my own progress — but hopefully inspires others starting their journey too. Thanks for reading! 🚀