Vadim Krohmal
Offer Vadim work on your next project.
Private message
Offer work
Kharkiv,
Ukraine
1 month 24 days back
available for hire
on the service 1 month 25 days
Rating
Successful projects
Average rating
Skills and abilities
Programming
Administration
Translation
Portfolio
-
100 USD Cybersecurity
Cybersecurity & Data ProtectionCybersecurity Portfolio | Vadim Krohmal
Project #1: Vulnerability Assessment & Infrastructure Hardening
Role: Security Auditor (Freelance)
… Target: Web-based educational platforms (WordPress) and server infrastructure.
The Problem: Frequent service downtime and unauthorized access attempts.
Actions Taken:
Conducted deep-dive manual penetration testing (SQLi, XSS, broken authentication).
Performed server-side configuration audits to identify open directories and misconfigured permissions.
Analyzed business logic flaws in the registration and user management modules.
Results: Identified 5+ critical vulnerabilities. Developed a remediation roadmap that eliminated downtime and secured sensitive student data.
Project #2: Hybrid SOC/NOC Laboratory (ELK & Zabbix)
Role: Security Engineer / Architect
Goal: Create a real-time detection and monitoring ecosystem for web-based threats.
Tech Stack: ELK Stack (Elasticsearch, Logstash, Kibana), Filebeat, Zabbix, Kali Linux.
Implementation:
SIEM: Configured log ingestion from Apache/Nginx and system logs into Elasticsearch.
Attack Simulation: Performed controlled attacks on DVWA and OWASP Juice Shop environments (SQLi, Brute-force, LFI).
Detection Engineering: Developed custom Kibana dashboards and visualization patterns to distinguish malicious traffic from legitimate user activity.
Availability: Implemented Zabbix triggers to monitor server health and network anomalies, ensuring a 360-degree view of the infrastructure.
Outcome: A fully functional monitoring lab capable of detecting and alerting on OWASP Top 10 attacks within seconds.
Project #3: Advanced OSINT & Threat Intelligence Repository
Role: Threat Intelligence Analyst
Objective: Systematic collection and categorization of intelligence-gathering resources.
Details:
Created a structured internal database of tools for digital footprinting, domain investigation, and data leak analysis.
Developed custom methodologies for tracking malicious actors and investigating fraudulent domains.
Impact: Significantly reduced time-to-info during security investigations and incident enrichment.
Technical Lab Work (VulnHub)
Focus: Offensive Security & Privilege Escalation
Successfully compromised and analyzed multiple VulnHub machines (Easy/Medium difficulty).
Skills applied: Enumeration (Nmap, Gobuster), exploit modification, manual privilege escalation on Linux systems, and post-exploitation analysis.