Foto de Gonzalo Alpuin

whoami

Luis Gonzalo Alpuin Arena is a Cybersecurity Analyst based in Montevideo, Uruguay, specialized in offensive security. He also cooperated with research projects in Germany, USA, and Switzerland.

Alpuin Arena holds various industry-recognized certifications, showcasing his expertise in ethical hacking. His credentials include Practical Junior Penetration Tester (PJPT), (), Practical Network Penetration Tester (PNPT), Web Application Penetration Tester Extreme (eWPTXv2), and (PWPP) from reputable institutions like TCM Security and INE Security. Additionally, he ranks in the top 1% on TryHackMe.

Please do not hesitate to contact via LinkedIn:

Certifications: Click on the logos below to view the credentials.

The PNPT certification evaluates a candidate’s ability to conduct a professional-level network penetration test. Candidates have five full days to complete the assessment, followed by an additional two days to write a professional report. This is followed by a live report debrief in front of assessors, who are all senior penetration testers.

In order to receive the certification, the candidate must:

  • Perform Open-Source Intelligence (OSINT) to gather intel on how to properly attack the network.
  • Leverage their Active Directory exploitation skillsets to perform A/V and egress bypassing, lateral and vertical network movements, and ultimately compromise the exam Domain Controller.
  • Provide a detailed, professionally written report.
  • Perform a live report debrief in front of assessors, comprised of all senior penetration testers.

The PWPP evaluates a candidate’s ability to conduct a professional-level web application penetration test. Candidates have three full days to complete the assessment, followed by an additional two days to write a professional report.

In order to receive the certification, the candidate must:

  • Exploit a web application using any preferred tools or techniques.
  • Provide a detailed, professionally written report.

The eWPTX is INE Security’s most advanced web application penetration testing certification. The exam requires candidates to perform an expert-level penetration test, assessed by cybersecurity instructors. Candidates must also provide a comprehensive report of their findings, as is standard in the corporate sector, in order to pass.

The certification assesses and certifies skills in the following areas:

  • Penetration testing processes and methodologies.
  • Web application analysis and inspection.
  • Advanced Reporting skills and Remediation Advanced knowledge and abilities to bypass basics advanced XSS, SQLi, etc. filters.
  • Advanced knowledge of different Database Management System.
  • Ability to create custom exploits when the modern tools fail.

The PWPA certification assesses a candidate’s ability to conduct a web application penetration test at the associate level. Candidates have two full days to complete the assessment, followed by an additional two days to write a professional report.

In order to receive the certification, the candidate must:

  • Exploit a web application using any preferred tools or techniques.
  • Provide a detailed, professionally written report.

The PJPT certification assesses a candidate’s ability to conduct an internal network penetration test at the junior level. Candidates have two full days to complete the assessment, followed by an additional two days to write a professional report.

In order to receive the certification, the candidate must:

  • Leverage their Active Directory exploitation skillsets to perform lateral and vertical network movements, and ultimately compromise the exam Domain Controller.
  • Provide a detailed, professionally written report.

The course trains IT professionals in hacking techniques to help improve organizational security and prepare teams for incident response.

Copyright © 2024 Gonzalo Alpuin. All rights reserved.

Your IP address and browser information are processed by our site’s security measures. In the event of a security breach or if required by law enforcement, this information may be disclosed to authorized authorities.

Copyright © 2024 Gonzalo Alpuin.

Your IP address and browser information are processed by our site’s security measures. In the event of a security breach or if required by law enforcement, this information may be disclosed to authorized authorities.