Available for Contributions

Zarni Aung {NEO}

// _

What I did: Architected and deployed scalable enterprise IT infrastructures.

What I do now: Secure critical networks, lead and develop Mindflow.care as founder.

What I love to do: Security research, custom tools, CTFs, lab from HTB/THM and anime.

Red TeamingCybersecurityToolingVAPTWebSecNetSecVulnerability ResearchSystem Architecture

View Projects LinkedIn ↗

3+·Years in IT╱13·Certifications

// Projects

Selected Work

NETWORK SECURITY • CRITICAL INFRA

Network Security Engineer @ Changi Airport (Sep 2024 - Present)

Managed critical network systems at Changi Airport, including AOT & LCD LIDAR Networks, UAV Anti-Drone System, and Key Management System. Conducted Vulnerability Assessment and Penetration Testing (VAPT) and contributed to ISO 27001 ISMS compliance. Designed secure network infrastructures and managed Fortinet and Cisco network security devices. Implemented Zabbix for real-time monitoring of network health.

fortinetciscoipsecvaptcompliancezabbixiso27001linux serverlidar

SYSTEMS ENGINEERING • IT DEPLOYMENT

Freelance System Engineer @ Aridient Co. (Jun 2023 - Jul 2024)

Designed and implemented new IT systems tailored to client business requirements, including operational management systems for K2 Guesthouse and F&B businesses. Deployed servers, hardware, and implemented Active Directory for medium-sized businesses. Managed user accounts, permissions, and security settings while providing training on system operations.

Active directorywindows serversystem adminlinux serverroutingswitchingkubernetescontainers

ENTERPRISE NETWORKING • INFRASTRUCTURE

Assistant Network Engineer @ Global Tech (Jan 2021 - Apr 2022)

Designed, implemented, and troubleshot enterprise network infrastructures. Configured and managed firewalls, routers, and switches in high-availability environments. Contributed to the configuration of BGP, OSPF and IPSEC. Supported the deployment of VMware servers, storage systems, and managed Windows Server installations including Active Directory.

VMwareBGP/OSPFFirewallsRouting & Switching

HEALTH TECH • PRODUCT LEADERSHIP

Creator @ Mindflow.care (Development)

Leading the vision, product strategy, and technical direction for Mindflow, a platform designed to make emotional support radically accessible. Engineered a digital space that blends emotional wellness tools—such as mood tracking and journaling—with real human connection to empower users to reflect, connect, and grow. www.mindflow.care

productmindflowstrategichealthtechdesign

OFFENSIVE TOOLS • RECON

BBrecon

Developed a lightning-fast reconnaissance tool designed specifically for bug bounty hunters and penetration testers. Automates the discovery and enumeration phases of security assessments to map external attack surfaces efficiently. https://github.com/zarni99/bbrecon

gobugbountyreconautomation

NETWORK SECURITY • COMPLIANCE

FortiOS Hardening Validator

Built an automated validation tool to audit Fortinet FortiOS configurations against strict security best practices. Streamlines the firewall hardening process and ensures enterprise networks maintain compliance with industry standards. https://github.com/zarni99/fortios_hardening_validator

pythonfortinethardeningauditautomation

RED TEAMING • OFFENSIVE SECURITY

Redmac

Developed a tactical red teaming utility focused on network evasion and identity manipulation. Built to assist in stealthy network movement and bypassing MAC-based access controls during adversary simulation engagements. https://github.com/zarni99/redmac

redteamevasion

OFFENSIVE SEC • POST-EXPLOITATION

Redtriage

Created a streamlined triage and enumeration tool tailored for red team operations. Assists operators in rapidly gathering critical host information, identifying misconfigurations, and gaining situational awareness during the post-exploitation phase. https://github.com/zarni99/redtriage

redteampostexploitenumeration

Recent GitHub Activity

zarni99 ↗

cve

Latest CVEs with their Proof of Concept exploits.

CIS-Benchmark-Hardening-Toolkit---L1

Enterprise-style Ubuntu 22.04 hardening with audit, remediation, rollback, and compliance reporting.

OSCP-wiki

TypeScript

Dark-Moon

Autonomous AI pentesting engine performing continuous offensive security across web, cloud, AD and Kubernetes. Uses agentic reasoning, real exploit execution and attack path analysis to deliver proof-based vulnerabilities.

// Writing

Latest Posts

View All Posts

#01HTB Writeup

03 May 2026

HTB: Logging

Leaked SMB credential with predictable year rotation → gMSA hash extraction → WinRM → DLL hijack → AD CS rogue cert → DNS poisoning → fake WSUS server → SYSTEM.

Read Post

#02HTB Writeup

18 Apr 2026

HTB: Kobold

Kobold is a medium Linux box that chains a misconfigured MCP developer tool into full root. An unauthenticated RCE in the MCPJam Inspector API (CVE-2026-23744) drops a shell as ben via unsanitized command injection through child_process.spawn(). Privilege escalation abuses a dormant Docker group membership activatable via newgrp docker, from there it's a one-liner container escape mounting the host filesystem for root.

Unlock to Read

// Credentials

Certification Vault

// Contact

Reach Out_

Open to collaborations and security research.

// contact.channels[]

Zarni Aung {NEO}

Selected Work

Network Security Engineer @ Changi Airport (Sep 2024 - Present)

Freelance System Engineer @ Aridient Co. (Jun 2023 - Jul 2024)

Assistant Network Engineer @ Global Tech (Jan 2021 - Apr 2022)

Creator @ Mindflow.care (Development)

BBrecon

FortiOS Hardening Validator

Redmac

Redtriage

Latest Posts

HTB: Logging

HTB: Kobold

Certification Vault

Reach Out_

HTB: DevArea

Certified Web Security Expert

Certified Associate Penetration Tester

Licensed Penetration Tester (Master)

Certified Penetration Testing Professional

ISO/IEC 27001:2022 INFORMATION SKILLFRONT SECURITY ASSOCIATE™

Cisco Certified Network Professional

Certified Network Security Practitioner

Certified Ethical Hacker

Junior Penetration Tester

Cyber Threat Intelligence 101

Google Cybersecurity

Blue Team Junior Analyst

Practical Junior Penetration Tester