Security Testing Journal Entry | w/e Friday October 31, 2025 - “Halloween Hopes” Ed.

Highlights for the week

Halloween week kicks off with an amazing assortment of treats and scaries. Still, it's been a productive week.
Treat: Oreos w. Reese's Peanut Butter is a great treat.
Trick: the layoffs haven't stopped ...

1. GM - 1,700
2. Meta - 9,000
3. Target - 1,000
4. Paramount - 2,000
5. Amazon - 30,000
6. Microsoft - 6,000 (on top of the 9,000 from earlier in the year)
7. UPS - 4,800
8. Nestle - 16,000
9. Lufthansa - 4,000
10. Intel - 4,000
I have to wonder if I'm ever going to land a job considering most companies are going through hiring freezes. The longer I'm out of work, the worse it looks.

What We’re Grateful For

1. Fun halloween spirit and an awesome family to share it with.
2. I get to wake up and enjoy good health and good food.
3. I get to look forward to a fun weekend and a good student.

What We Loved

1. CELEBRATED ANOTHER YEAR OF MARRIAGE - Forgot how long it's been
2. Have I mentioned the fun Halloween vibes .. always the best precursor to the holiday stretch.

What We Learned

1. Gandalf AI - [Status: Paused!] .. bumping this to next week as part of an AI learning initiative.
2. Picked up U-Test work (Tue. 10/28)
3. New Lesson: Getting Started in iOS Mobile Application Testing (Wed. 10/29 12 - 1) [Status: Done!] Cool things learned, but no real demo.
4. New Lesson: AI Agents and MCP Security Risks (Thr. 10/30 1 - 2) [Status: Done!]
5. Mentor/Mentee w. LUNA happening (Thr. 10/30 3pm) [Status: Done!]
6. Mentor/Mentee w. IMANI happening (Sun. 11/1 2pm) [Status: Done!]
7. Reading: WAHH Chapter 13 - [Status: Done!] .. applied the HTTP header lessons. Should revisit the labs a.s.a.p
8. Hacking: TCM - [Status: Done!]
9. Pen Testing: Five9 Pen Testing [Status: Done!]
10. Writing: Chapter "War Council" [Status: To Do!] .. been a hectic week.
11. Burp Suite: HTTP Header Labs [Status: To Do!]
12. QA Day: Need to get started on APIs.

What We Longed For

1. As always, a good job doing cool shit with amazing people, making great money ... and this time not to f** it up!!

What We Loathed

1. The 2025 Job Market
2. Miami Dolphins in 2025 .. worst I've seen in a long time

Security Testing Journal Entry | w/e Friday October 24, 2025 - “Post BSidesNYC” Ed.

Highlights for the week

Welp! Another week and another round of layoffs across diverse companies in the technology sector (and others). I'm optimistic I will find employment, just not sure in what anymore. Pen Testing is a super-saturated field. Literally everyone and their cousin want's to become a "hacker" having neither the talent or experience. Jobs in QA are becoming scarce as well, with roles being offshored to India and So. East Asia, or eliminated altogether.

The high from BSidesNYC has worn off. I'm back to the reality of looking for work > applying > getting rejected. Lather -> Rinse -> Repeat. 36 days left of UE .. the countdown begins.

The greatest blessing of the moment is acquiring a new mentee / student. I'm teaching her what I have learned about QA and arming with the knowledge I never had. I want to be the person I prayed for. My mission is to ensure she is empowered with the knowlege and skills to ask the right questions and perform to the best of her abilities. F** me for never having that in my life back when I started in QA. Who knows where I would have wound up. Teaching her is a new achievement unlocked!!

What We’re Grateful For

1. As always blessed to have a loving home, great family, food, and comfy bed
2. BSidesNYC continues to be a blessing. New connections keep popping up and I feel new opportunities will manifest themselves.
3. Grateful for Imani, my new student. Her name means "Faith/Believe" in Arabic. So it makes sense I would find faith in myself.

What We Loved

1. In a word .. everything! Never taking a day for granted.

What We Learned

1. Gandalf AI - haven't made time for this [Status: Paused!] .. Looking to pivot to taking the AI courses from "Eli" before coming back to this.
2. Reading: WAHH Chapter 13 - still going [Status: In Progress] .. hadn't had much time this week to do much reading or writing of any kind.
3. Hacking: TCM - 98% done. Have to finish watching the "Report Authoring" section for new ideas.
4. Writing: Chapter "War Council" [Status: Not started] .. been a hectic week.
5. Pen Testing: Five9 Pen Testing [Status: In Progress!] .. behind on it due to BSidesNYC (2 days), along with other priorities.
6. Burp Suite: HTTP Header Labs [Status: To Do!]
7. QA Day: Need to get started on APIs.

What We Longed For

1. As always .. a good job!!

What We Loathed

1. Not having a job for this long.
2. As fun as it feels, losing my willpower to my vice sucks. Getting back on the discipline wagon.

Security Testing Journal Entry | w/e Friday October 16, 2025 - "BSidesNYC Experience" Ed.

Security Testing Journal Entry | w/e Friday {{month}} {{day}}, 2025 - “{{ Theme }” Ed.

Highlights for the week

"A grateful mind is a great mind which eventually attracts to itself great things" - PLATO

BSides NYC All DAY Saturday ... sooo excited for this. Finally getting to volunteer, as per my new years resolution for 2025. For the most part, a lot of what I had laid out as far as goals has come to pass. Landed a Security job, read a couple of books, wrote more, and did as much as I could for mentoring. Certifications are just so expensive. In the meantime, I'm working on the weak areas like network pen testing, report writing, and getting better with Burp Suite (need that PRO version a.s.a.p).

What We’re Grateful For

1. As always, I take comfort in having an awesome family.
2. Grateful that I'm getting to meet people at the BSides Conference.
3. Keeping hope alive that I will land a job soon. But I am glad I didn't get a bad job.

What We Loved

1. Getting to be part of the BSidesNYC voluteerism.
2. Looking forward to meeting RaicesCyber folks.

What We Learned

1. Gandalf AI - haven't made time for this [Status: Paused!]
2. Reading: WAHH Chapter 13 - still going [Status: In Progress]
3. Hacking: TCM - Re-watched Module 9 [Status: Done!] Module 10 [Status: Not Started!]
4. Writing: Set up the outline for Chapter "War Council" [Status: In Progress!]
5. Pen Testing: Five9 Scope completed; Pen Testing paused for other priorities that came up.
6. Burp Suite: CSRF Labs [Status: Done!] HTTP Header Labs [Status: To Do!]
7. QA Day: Fixed E2E e-commerce tests. Need to get started on APIs.

What We Longed For

1. Longing for that great job, making great money, working with great people, doing awesomethings in the Cybersecurity space, mainly pen testing.

What We Loathed

1. 2025 Job Market.

Security Testing Journal Entry | w/e Friday October 10, 2025 - "Versus Vices" Ed.

Highlights for the week

Had a temporary moment of weakness with my vice - felt guilty despite the temporary enjoyment. Reddit is the other habit I need to regulate.

In other, exciting news, my mentee wants to get started on Pen Testing .. which is motivating me to revisit the craft. Radio silence from my other mentee in France. Hope all is well with her. It's been three weeks or so since we last talked.

What We’re Grateful For

1. Getting to rise and shine to a beautiful Friday morning in the fall is always a blessing.
2. Grateful to have another week of good health and good vibes.
3. I get to wake up .. I will make the most of this.
4. I'm appreciative of all that I have.
5. I will make the most of this.

What We Loved

1. As stated before: crisp fall air, beautiful blue skies, sunshine, and the unshakable feeling of something amazing about to happen this month.

What We Learned

1. Gandalf AI - hacked around and did not find out! Prompt injection attack for level 1: [Status: Paused!] .. just not enough hours in the week.
2. Reading: WAHH Chapter 13 - [Status: In Progress] - it's a monster chapter and I'm pausing to correlate BurpSuite labs as I finish a section.
3. Hacking: TCM - Module 9 [Status: Done!] - Might need to revisit the last 10 minutes before starting Module 10.
4. Writing: New Chapter "War Council" [Status: Not Started!]
5. Pen Testing: Five9 Scope completed; Pen Testing paused for other priorities that came up.
6. Burp Suite: Near complete with CSRF Labs; Then HTTP Header Flaws (per WAHH Chap. 13).
7. QA Day: Continued work for Checkout Summary page [Status: In Progress]; need to fix the fails.

What We Longed For

1. As always: a great job, working for a great company, doing amazing things, with great people, making great money.
2. Getting out of debt .. looking forward to that so I can start saving $$$

What We Loathed

1. THE JOB MARKET IN 2025 ... I'll probably keep repeating this until I land a job.

Security Testing Journal Entry | w/e Friday October 3, 2025 - "Besides the BSides" Ed.

Security Testing Journal Entry | w/e Friday {{month}} {{day}}, 2025 - “{{ Theme }” Ed.

Highlights for the week

Got a great feeling about October, and from the looks of my calendar .. that is justified!! Mentee wants in on Pen Testing action. And I'm volunteering for BSidesNYC ... woot!

What We’re Grateful For

1. I get to be here.
2. Got a great family.
3. Some money was given to us for good use.
4. New opportunities showing up.

What We Loved

1. Finally getting to go to BSidesNYC and volunteering.
2. Gandalf Hacking posponed to next week.
3. Got some great feedback with the AI prompt on "Husb.." fight scene.
4. Re-assessed finances and consolidated a lot of balances down to two cards. Gotta make that money!!
5. Got around to scheduling new appointment for DMV.
6. Got a new doctor and hoping I can get to the new endo. This low-t thing is killing me

What We Learned

1. Finished Module 4 for Google Prompt and came away learnig A LOT about prompts.
2. Reading: WAHH Chapter 13 - [Status: In Progress]
3. Hacking: TCM - Module 9 [Status: To Do!]
4. Writing: Leveraged AI to expand on the fight scene between Mara and Dee. [Status: Done!] The feedback was amazing!
5. Pen Testing (Bug Crowd): Need a new PT starting next week.
6. Burp Suite: Bus. Logic flaws - [Status: Not Started!]. About to start CSRF, which aligns with the section in Chapter 13 of WAHH.
7. QA Day: Continued work over the weekend [Status: In Progress]
8. Gandalf AI - hacked around and did not find out! Prompt injection attack for level 1: [Status: In Progress!]

What We Longed For

1. A great job doing cool sh**, with amazing people, making decent $$$ and benefits! Applied again to Perplexity (fingers crossed!)

What We Loathed

1. Job Market in 2025. Unemployment is a real drag.